Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
e2b704d2f52f88bbda587a5f01f5a122_JaffaCakes118
-
Size
52KB
-
Sample
240406-rhnlbaca9w
-
MD5
e2b704d2f52f88bbda587a5f01f5a122
-
SHA1
fc8b3603b4f46e6a5cb006cfb12d3f768d852621
-
SHA256
358aa0e38f8a991e71970234f048bae38b44a2f0409d2871c55f055c390a352b
-
SHA512
9e2574884624fceb6ed66651e27986443c767b59daa31fd384e1e694808f71641209ffc730e8cfddcbb9545f5f5a7f9e02486fbd26a4066749686f736348bd0c
-
SSDEEP
768:tGPUEF9nQ2CU2d0hpBNwgGLxS/Fo/C1hEOxdjsALX0vy0GRkh:odRCU+0hpbqxQFPUOxG0A6
Static task
static1
Behavioral task
behavioral1
Sample
e2b704d2f52f88bbda587a5f01f5a122_JaffaCakes118.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
e2b704d2f52f88bbda587a5f01f5a122_JaffaCakes118.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
e2b704d2f52f88bbda587a5f01f5a122_JaffaCakes118
-
Size
52KB
-
MD5
e2b704d2f52f88bbda587a5f01f5a122
-
SHA1
fc8b3603b4f46e6a5cb006cfb12d3f768d852621
-
SHA256
358aa0e38f8a991e71970234f048bae38b44a2f0409d2871c55f055c390a352b
-
SHA512
9e2574884624fceb6ed66651e27986443c767b59daa31fd384e1e694808f71641209ffc730e8cfddcbb9545f5f5a7f9e02486fbd26a4066749686f736348bd0c
-
SSDEEP
768:tGPUEF9nQ2CU2d0hpBNwgGLxS/Fo/C1hEOxdjsALX0vy0GRkh:odRCU+0hpbqxQFPUOxG0A6
Score8/10-
Sets service image path in registry
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-
Loads dropped DLL
-