Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    e395a7cfaa1ab47217808666ad8ed4c2_JaffaCakes118

  • Size

    57KB

  • Sample

    240406-3xg8maef5v

  • MD5

    e395a7cfaa1ab47217808666ad8ed4c2

  • SHA1

    ff3fc271d482427eda456facb303100103e444d5

  • SHA256

    694982205d44c2fd858b0246f1ca3c68766ff883ff75e342d0de8920df3b05aa

  • SHA512

    f088dc70b3997a5a6d2ee180156422a2acae0922ea7d2ca9c3b4ee89ff09d27f85bbdae67faad5806c1cff6adf593e27ac9e626f352300a00bf29f7357668d2d

  • SSDEEP

    768:hBRMLJshpXC1tlRiYTqyFN9Mwxgb+qi90sG3gGaru+6o6cAT5LZwmChDkGBh9OH/:hBFwt8Om/sPruWOLZwmChgGzg+fPVG6U

Score
8/10

Malware Config

Targets

    • Target

      e395a7cfaa1ab47217808666ad8ed4c2_JaffaCakes118

    • Size

      57KB

    • MD5

      e395a7cfaa1ab47217808666ad8ed4c2

    • SHA1

      ff3fc271d482427eda456facb303100103e444d5

    • SHA256

      694982205d44c2fd858b0246f1ca3c68766ff883ff75e342d0de8920df3b05aa

    • SHA512

      f088dc70b3997a5a6d2ee180156422a2acae0922ea7d2ca9c3b4ee89ff09d27f85bbdae67faad5806c1cff6adf593e27ac9e626f352300a00bf29f7357668d2d

    • SSDEEP

      768:hBRMLJshpXC1tlRiYTqyFN9Mwxgb+qi90sG3gGaru+6o6cAT5LZwmChDkGBh9OH/:hBFwt8Om/sPruWOLZwmChgGzg+fPVG6U

    Score
    8/10
    • Sets file to hidden

      Modifies file attributes to stop it showing in Explorer etc.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks