Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    e58743c8adaf087ff3edaf3e04bbb924_JaffaCakes118

  • Size

    250KB

  • Sample

    240407-wmew7aae2t

  • MD5

    e58743c8adaf087ff3edaf3e04bbb924

  • SHA1

    1715d3c0e8fe2bd704b3fffc78646311b39fdd9b

  • SHA256

    dc55eee42c9fdd43c2bfba31f4ccd737bc69234884bdf2ef1d0eb0dd8058dee1

  • SHA512

    71e2a4030928b0a2c4160daec6946e352a460f7898fdc2d7c2631f7b782a868b69ced969cbae1b7e3962a65ad4bc0b8661778747f900fc96c93f72051cfea1de

  • SSDEEP

    6144:ohieuJDr5T8b2ufqBLjSB/MS7irtIa6cwoD8ZroSfjGFA:5eKrJJuf86AYcwoaoSbr

Score
8/10

Malware Config

Targets

    • Target

      e58743c8adaf087ff3edaf3e04bbb924_JaffaCakes118

    • Size

      250KB

    • MD5

      e58743c8adaf087ff3edaf3e04bbb924

    • SHA1

      1715d3c0e8fe2bd704b3fffc78646311b39fdd9b

    • SHA256

      dc55eee42c9fdd43c2bfba31f4ccd737bc69234884bdf2ef1d0eb0dd8058dee1

    • SHA512

      71e2a4030928b0a2c4160daec6946e352a460f7898fdc2d7c2631f7b782a868b69ced969cbae1b7e3962a65ad4bc0b8661778747f900fc96c93f72051cfea1de

    • SSDEEP

      6144:ohieuJDr5T8b2ufqBLjSB/MS7irtIa6cwoD8ZroSfjGFA:5eKrJJuf86AYcwoaoSbr

    Score
    8/10
    • Modifies Installed Components in the registry

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • AutoIT Executable

      AutoIT scripts compiled to PE executables.

MITRE ATT&CK Enterprise v15

Tasks