Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    e35f361db92f78586661e88a970cd7cb_JaffaCakes118

  • Size

    174KB

  • Sample

    240406-1srkdscg67

  • MD5

    e35f361db92f78586661e88a970cd7cb

  • SHA1

    3477c5dd594f2a45341c09fddf19412ce597659e

  • SHA256

    47cbfbf7fbd112dce13b3596823d88533085c7b3e540d833be8a112d47814e79

  • SHA512

    b0d72c51da74653c00752bc06ce7c9bd83984625ba9afff4df7c8c72bee4f27acf555f79c3ece3c5bdaa02f1a39826e4b7a7bbc2b517c3119283d270c4ae5e9e

  • SSDEEP

    3072:Zr3Kt1EZG3djryusmOXSJvAUulwWoBEROS4psXee+b1GB9dPz6IIcCTs:Zrk1EirMtX4feWpYeepv6IC

Score
7/10

Malware Config

Targets

    • Target

      e35f361db92f78586661e88a970cd7cb_JaffaCakes118

    • Size

      174KB

    • MD5

      e35f361db92f78586661e88a970cd7cb

    • SHA1

      3477c5dd594f2a45341c09fddf19412ce597659e

    • SHA256

      47cbfbf7fbd112dce13b3596823d88533085c7b3e540d833be8a112d47814e79

    • SHA512

      b0d72c51da74653c00752bc06ce7c9bd83984625ba9afff4df7c8c72bee4f27acf555f79c3ece3c5bdaa02f1a39826e4b7a7bbc2b517c3119283d270c4ae5e9e

    • SSDEEP

      3072:Zr3Kt1EZG3djryusmOXSJvAUulwWoBEROS4psXee+b1GB9dPz6IIcCTs:Zrk1EirMtX4feWpYeepv6IC

    Score
    7/10
    • Deletes itself

    • Executes dropped EXE

    • Registers COM server for autorun

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks