Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
e598b6216b6447302a1221c72af765a1_JaffaCakes118
-
Size
404KB
-
Sample
240407-w9ke7abe68
-
MD5
e598b6216b6447302a1221c72af765a1
-
SHA1
6756a8b09d437d510a65e9141ac542f1410d57bd
-
SHA256
52a92581c4af438f557a723fb1a47c736a46a8a0340110874b6173c438110185
-
SHA512
6a7c75ac7a1d9c735d518604263253e10bd8db71ca5aa5bbd49ade4f1baac0d183233e7a0b1a0315e581c1225182ed649b1de065bafcf0c93293a61c5c225c51
-
SSDEEP
6144:sgoGvI+Rozknxj2xw+sJGBAzPA+aabt/6SPblOfnm0c3upMIv:sgokIKoonxjJGnW5/6GOfH2uuI
Static task
static1
Behavioral task
behavioral1
Sample
e598b6216b6447302a1221c72af765a1_JaffaCakes118.exe
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
e598b6216b6447302a1221c72af765a1_JaffaCakes118.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
e598b6216b6447302a1221c72af765a1_JaffaCakes118
-
Size
404KB
-
MD5
e598b6216b6447302a1221c72af765a1
-
SHA1
6756a8b09d437d510a65e9141ac542f1410d57bd
-
SHA256
52a92581c4af438f557a723fb1a47c736a46a8a0340110874b6173c438110185
-
SHA512
6a7c75ac7a1d9c735d518604263253e10bd8db71ca5aa5bbd49ade4f1baac0d183233e7a0b1a0315e581c1225182ed649b1de065bafcf0c93293a61c5c225c51
-
SSDEEP
6144:sgoGvI+Rozknxj2xw+sJGBAzPA+aabt/6SPblOfnm0c3upMIv:sgokIKoonxjJGnW5/6GOfH2uuI
Score10/10-
Disables taskbar notifications via registry modification
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Abuse Elevation Control Mechanism
1Bypass User Account Control
1Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1