Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    e61ba9d7e37b187afa774a5d21f7ed3d_JaffaCakes118

  • Size

    182KB

  • Sample

    240407-3fb1aahf8y

  • MD5

    e61ba9d7e37b187afa774a5d21f7ed3d

  • SHA1

    f85ec0d3d89db06c815e8fdd3b2f82760439174e

  • SHA256

    7102d65483413cd0f655c35cb370af17b2c7034df099b31dc66905e2c2525aac

  • SHA512

    de7d5dba76b43d8d8cecb73630216bf8c943226694652b0fbd4456c0e4cb935c69738772f8779e867139158c46cc6c704cde880b69a8ac1df3741b2452b39fbb

  • SSDEEP

    3072:yPMZM/4/opThQPKzjo+EhcToVJ7NrRRIeFUpKI4b42dMBjOImsO/3:ygIco5eP6QNYeY34bFMBSBsO/3

Score
8/10

Malware Config

Targets

    • Target

      e61ba9d7e37b187afa774a5d21f7ed3d_JaffaCakes118

    • Size

      182KB

    • MD5

      e61ba9d7e37b187afa774a5d21f7ed3d

    • SHA1

      f85ec0d3d89db06c815e8fdd3b2f82760439174e

    • SHA256

      7102d65483413cd0f655c35cb370af17b2c7034df099b31dc66905e2c2525aac

    • SHA512

      de7d5dba76b43d8d8cecb73630216bf8c943226694652b0fbd4456c0e4cb935c69738772f8779e867139158c46cc6c704cde880b69a8ac1df3741b2452b39fbb

    • SSDEEP

      3072:yPMZM/4/opThQPKzjo+EhcToVJ7NrRRIeFUpKI4b42dMBjOImsO/3:ygIco5eP6QNYeY34bFMBSBsO/3

    Score
    8/10
    • Adds policy Run key to start application

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks