Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    e5869ac9a18b68f5e2086a94feca4992_JaffaCakes118

  • Size

    17KB

  • Sample

    240407-wldyhaad7z

  • MD5

    e5869ac9a18b68f5e2086a94feca4992

  • SHA1

    c3138754e867fe4ee0c33ec141cdc4bd5c3ed063

  • SHA256

    e42fa9ac8b8d4259bcdb47ecdea29908dadb96b9b2c157f7bbef9a40350a69df

  • SHA512

    8e2315e24c56bd1be89dbc387013fd21a81e25f357beb947fbf2a2670afe8a6745e506aae356df831207c289ca0bc35395259d0c6129e3b7d8b0f80eb6b837d6

  • SSDEEP

    384:/F0aRs9YAcmZO2Zp+Nye8pqrmub8TyztsDN:/uauYAoKK8o8TyJc

Score
8/10

Malware Config

Targets

    • Target

      e5869ac9a18b68f5e2086a94feca4992_JaffaCakes118

    • Size

      17KB

    • MD5

      e5869ac9a18b68f5e2086a94feca4992

    • SHA1

      c3138754e867fe4ee0c33ec141cdc4bd5c3ed063

    • SHA256

      e42fa9ac8b8d4259bcdb47ecdea29908dadb96b9b2c157f7bbef9a40350a69df

    • SHA512

      8e2315e24c56bd1be89dbc387013fd21a81e25f357beb947fbf2a2670afe8a6745e506aae356df831207c289ca0bc35395259d0c6129e3b7d8b0f80eb6b837d6

    • SSDEEP

      384:/F0aRs9YAcmZO2Zp+Nye8pqrmub8TyztsDN:/uauYAoKK8o8TyJc

    Score
    8/10
    • Sets file execution options in registry

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks