Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    e2d637acc57cd54276f7f317de0fdb18_JaffaCakes118

  • Size

    203KB

  • Sample

    240406-ssxseadb5y

  • MD5

    e2d637acc57cd54276f7f317de0fdb18

  • SHA1

    f354930823976e29e6ff3f5ae737e5d5e6ac1e73

  • SHA256

    8740a2cf11e37babe9b7e6cad2de6e4b63d3e35d65dd366322dbb1f601d30a40

  • SHA512

    e3a784d62aca5c342226315925673614b7d5132ff6d5d53c2d3265e3ca533e4d43e644202dd9b6c415594e0026083ad4c9cf7214fe147564ce5e6a5d49c49498

  • SSDEEP

    3072:phGJR3yV3O8CYdhyp5s2KoNPu56NuzdYSTnjFb3uqAlUMxqRj3geDakJGmkBO:qR3ke8NEZrBxEYAjFbejlRMDaG/V

Malware Config

Targets

    • Target

      e2d637acc57cd54276f7f317de0fdb18_JaffaCakes118

    • Size

      203KB

    • MD5

      e2d637acc57cd54276f7f317de0fdb18

    • SHA1

      f354930823976e29e6ff3f5ae737e5d5e6ac1e73

    • SHA256

      8740a2cf11e37babe9b7e6cad2de6e4b63d3e35d65dd366322dbb1f601d30a40

    • SHA512

      e3a784d62aca5c342226315925673614b7d5132ff6d5d53c2d3265e3ca533e4d43e644202dd9b6c415594e0026083ad4c9cf7214fe147564ce5e6a5d49c49498

    • SSDEEP

      3072:phGJR3yV3O8CYdhyp5s2KoNPu56NuzdYSTnjFb3uqAlUMxqRj3geDakJGmkBO:qR3ke8NEZrBxEYAjFbejlRMDaG/V

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

MITRE ATT&CK Enterprise v15

Tasks