Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    e39e319e47a7722e90f0f591de689a61_JaffaCakes118

  • Size

    748KB

  • Sample

    240407-agmh7afa6x

  • MD5

    e39e319e47a7722e90f0f591de689a61

  • SHA1

    42e6ddb6378bf709fae3cffac632aa6ff88b7456

  • SHA256

    b5ed289659fb1160f41fa09544dcfa50574d9ce197d95d992853fbac5ecfc77b

  • SHA512

    4051c06411f8fb8e3391177d4810c90b26952bb18c6e43f1b6da5c2938a483359e9045e181058d2db5c6a66ae66e1edce31c9792a04b054b29e12ad106e49f7b

  • SSDEEP

    12288:dSEzwmVGeur65bPnKZrTYZZFdD70oB12XfHQ7xA7+dwUNNEfkIUGxHkN:wxeur65bPKSTF2oKMA77UufkIUUEN

Score
10/10

Malware Config

Targets

    • Target

      e39e319e47a7722e90f0f591de689a61_JaffaCakes118

    • Size

      748KB

    • MD5

      e39e319e47a7722e90f0f591de689a61

    • SHA1

      42e6ddb6378bf709fae3cffac632aa6ff88b7456

    • SHA256

      b5ed289659fb1160f41fa09544dcfa50574d9ce197d95d992853fbac5ecfc77b

    • SHA512

      4051c06411f8fb8e3391177d4810c90b26952bb18c6e43f1b6da5c2938a483359e9045e181058d2db5c6a66ae66e1edce31c9792a04b054b29e12ad106e49f7b

    • SSDEEP

      12288:dSEzwmVGeur65bPnKZrTYZZFdD70oB12XfHQ7xA7+dwUNNEfkIUGxHkN:wxeur65bPKSTF2oKMA77UufkIUUEN

    Score
    10/10
    • Modifies WinLogon for persistence

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks