Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
e5933364d16c249fda7c5d6be4b75e5a_JaffaCakes118
-
Size
37KB
-
Sample
240407-w3bvgabc79
-
MD5
e5933364d16c249fda7c5d6be4b75e5a
-
SHA1
8bc12b0bf6243c9dbb8f8adfc226a91a1497cc34
-
SHA256
7e38a18c08c3ca9fd53a45f0396a3769cc39dd550af2def720d55b52233921d9
-
SHA512
7411087c84382d34a7ff61418845b0ce44066145ba33c6a0bc59ff1985da1352863c432762377508949b9b37e75ae2b29198b32f4e5830b42cd861750ba319b9
-
SSDEEP
768:4AWb47QxCKVvOSy3u8B49kXSAuxZ2qJFc4c2JCPbjts34Y:o47Qfgj+1XAmZ2qXc47oPbeV
Static task
static1
Behavioral task
behavioral1
Sample
e5933364d16c249fda7c5d6be4b75e5a_JaffaCakes118.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
e5933364d16c249fda7c5d6be4b75e5a_JaffaCakes118.exe
Resource
win10v2004-20231215-en
Malware Config
Targets
-
-
Target
e5933364d16c249fda7c5d6be4b75e5a_JaffaCakes118
-
Size
37KB
-
MD5
e5933364d16c249fda7c5d6be4b75e5a
-
SHA1
8bc12b0bf6243c9dbb8f8adfc226a91a1497cc34
-
SHA256
7e38a18c08c3ca9fd53a45f0396a3769cc39dd550af2def720d55b52233921d9
-
SHA512
7411087c84382d34a7ff61418845b0ce44066145ba33c6a0bc59ff1985da1352863c432762377508949b9b37e75ae2b29198b32f4e5830b42cd861750ba319b9
-
SSDEEP
768:4AWb47QxCKVvOSy3u8B49kXSAuxZ2qJFc4c2JCPbjts34Y:o47Qfgj+1XAmZ2qXc47oPbeV
Score8/10-
Adds policy Run key to start application
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Deletes itself
-