Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
e61ba9d7e37b187afa774a5d21f7ed3d_JaffaCakes118
-
Size
182KB
-
Sample
240407-3fb1aahf8y
-
MD5
e61ba9d7e37b187afa774a5d21f7ed3d
-
SHA1
f85ec0d3d89db06c815e8fdd3b2f82760439174e
-
SHA256
7102d65483413cd0f655c35cb370af17b2c7034df099b31dc66905e2c2525aac
-
SHA512
de7d5dba76b43d8d8cecb73630216bf8c943226694652b0fbd4456c0e4cb935c69738772f8779e867139158c46cc6c704cde880b69a8ac1df3741b2452b39fbb
-
SSDEEP
3072:yPMZM/4/opThQPKzjo+EhcToVJ7NrRRIeFUpKI4b42dMBjOImsO/3:ygIco5eP6QNYeY34bFMBSBsO/3
Static task
static1
Behavioral task
behavioral1
Sample
e61ba9d7e37b187afa774a5d21f7ed3d_JaffaCakes118.exe
Resource
win7-20240319-en
Behavioral task
behavioral2
Sample
e61ba9d7e37b187afa774a5d21f7ed3d_JaffaCakes118.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
e61ba9d7e37b187afa774a5d21f7ed3d_JaffaCakes118
-
Size
182KB
-
MD5
e61ba9d7e37b187afa774a5d21f7ed3d
-
SHA1
f85ec0d3d89db06c815e8fdd3b2f82760439174e
-
SHA256
7102d65483413cd0f655c35cb370af17b2c7034df099b31dc66905e2c2525aac
-
SHA512
de7d5dba76b43d8d8cecb73630216bf8c943226694652b0fbd4456c0e4cb935c69738772f8779e867139158c46cc6c704cde880b69a8ac1df3741b2452b39fbb
-
SSDEEP
3072:yPMZM/4/opThQPKzjo+EhcToVJ7NrRRIeFUpKI4b42dMBjOImsO/3:ygIco5eP6QNYeY34bFMBSBsO/3
Score8/10-
Adds policy Run key to start application
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-