Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    e254e285f1729936cf9e30e1c098271c_JaffaCakes118

  • Size

    88KB

  • Sample

    240406-mjs5zagb9s

  • MD5

    e254e285f1729936cf9e30e1c098271c

  • SHA1

    653cf3782b7b9129a98c6fbad8cf885fe0bde227

  • SHA256

    79fe90ff4ac1f24d4f0305d1f31adcb2cb276d1b6a6260e547a8e7ec81c104e5

  • SHA512

    1f3c5de3148a3b6b9dbc9fa49fd2591670bc08a18563c59c1cf8361eef65bd5293267d6bd58a6b1b52819f1938af52c74a103eeaa1055117729dae9ad25fcc03

  • SSDEEP

    1536:scNjQlsWjcdiTuXbELbGn82i+beo/47Og:vjr5ELbGnzi+ao/Cf

Malware Config

Targets

    • Target

      e254e285f1729936cf9e30e1c098271c_JaffaCakes118

    • Size

      88KB

    • MD5

      e254e285f1729936cf9e30e1c098271c

    • SHA1

      653cf3782b7b9129a98c6fbad8cf885fe0bde227

    • SHA256

      79fe90ff4ac1f24d4f0305d1f31adcb2cb276d1b6a6260e547a8e7ec81c104e5

    • SHA512

      1f3c5de3148a3b6b9dbc9fa49fd2591670bc08a18563c59c1cf8361eef65bd5293267d6bd58a6b1b52819f1938af52c74a103eeaa1055117729dae9ad25fcc03

    • SSDEEP

      1536:scNjQlsWjcdiTuXbELbGn82i+beo/47Og:vjr5ELbGnzi+ao/Cf

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks