Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
e2d762881a7b1b7b3a45c58896b63742_JaffaCakes118
-
Size
60KB
-
Sample
240406-svb9gsdb9v
-
MD5
e2d762881a7b1b7b3a45c58896b63742
-
SHA1
970143abd61e98b1173a05889806d1faa2d001eb
-
SHA256
3986964dde321b62409445beee2f2311ccfec2dbe1fc962d2cc861d6ecf75c1c
-
SHA512
536fbf951b4c46dc9a7b6f8b44c9863ec9ba5fd7d6d867c300e41c21c74a8a8acf237b166bc4cad51974909535b7e78ae14d031debd8e0617bfb27b5cbbacedd
-
SSDEEP
768:M6CGD9xRIHgWTU6xUdPMXndo7sZUNMRrY20KtF1eNbw1o+p3HK:5zDL6mJdsndo6UNMyetF1qw1o+p3H
Static task
static1
Behavioral task
behavioral1
Sample
e2d762881a7b1b7b3a45c58896b63742_JaffaCakes118.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
e2d762881a7b1b7b3a45c58896b63742_JaffaCakes118.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
e2d762881a7b1b7b3a45c58896b63742_JaffaCakes118
-
Size
60KB
-
MD5
e2d762881a7b1b7b3a45c58896b63742
-
SHA1
970143abd61e98b1173a05889806d1faa2d001eb
-
SHA256
3986964dde321b62409445beee2f2311ccfec2dbe1fc962d2cc861d6ecf75c1c
-
SHA512
536fbf951b4c46dc9a7b6f8b44c9863ec9ba5fd7d6d867c300e41c21c74a8a8acf237b166bc4cad51974909535b7e78ae14d031debd8e0617bfb27b5cbbacedd
-
SSDEEP
768:M6CGD9xRIHgWTU6xUdPMXndo7sZUNMRrY20KtF1eNbw1o+p3HK:5zDL6mJdsndo6UNMyetF1qw1o+p3H
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-