Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    e614c22d5cab478df232f482eb20f1db_JaffaCakes118

  • Size

    159KB

  • Sample

    240407-26872ahe76

  • MD5

    e614c22d5cab478df232f482eb20f1db

  • SHA1

    612f3258e935933fbe67c2d18481082f3d732ba5

  • SHA256

    89d3301c45deaf65710058e037afc627eaee1dd00dd4e287d3f68f5eaafaa095

  • SHA512

    bf6cd0385cc1464b7af3db18465c0859c432de3b9f1396ff741e0b70ba8b15802e3148b7e9fb312db875a4e402f91b9d22c5301d75483866746cbf8fca6caee5

  • SSDEEP

    3072:8FQPzPF+zqdHlgrIRpDo5jw6bF4cm1vw8sisvHmuYPSqe8a3t:gQTFFdHlPNAjw6bFJisvHMne

Score
7/10

Malware Config

Targets

    • Target

      e614c22d5cab478df232f482eb20f1db_JaffaCakes118

    • Size

      159KB

    • MD5

      e614c22d5cab478df232f482eb20f1db

    • SHA1

      612f3258e935933fbe67c2d18481082f3d732ba5

    • SHA256

      89d3301c45deaf65710058e037afc627eaee1dd00dd4e287d3f68f5eaafaa095

    • SHA512

      bf6cd0385cc1464b7af3db18465c0859c432de3b9f1396ff741e0b70ba8b15802e3148b7e9fb312db875a4e402f91b9d22c5301d75483866746cbf8fca6caee5

    • SSDEEP

      3072:8FQPzPF+zqdHlgrIRpDo5jw6bF4cm1vw8sisvHmuYPSqe8a3t:gQTFFdHlPNAjw6bFJisvHMne

    Score
    7/10
    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Registers COM server for autorun

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Drops desktop.ini file(s)

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks