Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    e2b88829f6fd69ccc3796eac8a55ec24_JaffaCakes118

  • Size

    1.7MB

  • Sample

    240406-rks9kscb4s

  • MD5

    e2b88829f6fd69ccc3796eac8a55ec24

  • SHA1

    738c54fb835444f336384a4a062a56842373b3b6

  • SHA256

    7917cf85e2ba7357d2db32c7109416957542fbc7e0d1cc7aae93a4de9a4b5228

  • SHA512

    0b6d9025a62eaf4e6bdae42c37577858f4f86558232ae4f25e5a6619ccc9a928842c562be7c27c2d7152a8d702f59082348f90214318ab2b505e6cb2a3b4f1e8

  • SSDEEP

    24576:CwIwX2pWG2oHCRTn9LtnTrsmjYu1ZE66raFfN8YcOYOIWqawPjQHfXLiLi20hI+a:CEGWL9Trsmc66OFfN8pglyqXLHIYI

Score
8/10

Malware Config

Targets

    • Target

      e2b88829f6fd69ccc3796eac8a55ec24_JaffaCakes118

    • Size

      1.7MB

    • MD5

      e2b88829f6fd69ccc3796eac8a55ec24

    • SHA1

      738c54fb835444f336384a4a062a56842373b3b6

    • SHA256

      7917cf85e2ba7357d2db32c7109416957542fbc7e0d1cc7aae93a4de9a4b5228

    • SHA512

      0b6d9025a62eaf4e6bdae42c37577858f4f86558232ae4f25e5a6619ccc9a928842c562be7c27c2d7152a8d702f59082348f90214318ab2b505e6cb2a3b4f1e8

    • SSDEEP

      24576:CwIwX2pWG2oHCRTn9LtnTrsmjYu1ZE66raFfN8YcOYOIWqawPjQHfXLiLi20hI+a:CEGWL9Trsmc66OFfN8pglyqXLHIYI

    Score
    8/10
    • Adds policy Run key to start application

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks