Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
e58b5cbc91ac6c4f2d678e4f8598701b_JaffaCakes118
-
Size
364KB
-
Sample
240407-wsk1dsaf5y
-
MD5
e58b5cbc91ac6c4f2d678e4f8598701b
-
SHA1
648b62a491da3029660b2161ab8c8d9afd950120
-
SHA256
94b3c000d56e9155ac9baa1fdf9eb99cad0c8d4e87cdd4c2648ed4d4d63c62c9
-
SHA512
8375ba268046c7e0a76035868b16456c2ddd9bf5505da7981c3d55170df50ff2a87ae5e99fabe937266ede7132f0776be47d52ac9991c3221176ea554bc235ef
-
SSDEEP
6144:MEkfaA5SdMZlC47Jvn3MO+mAnb6aoGPBVUEaUyw:OaA52ShBn87lnWsi+V
Static task
static1
Behavioral task
behavioral1
Sample
e58b5cbc91ac6c4f2d678e4f8598701b_JaffaCakes118.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
e58b5cbc91ac6c4f2d678e4f8598701b_JaffaCakes118.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
e58b5cbc91ac6c4f2d678e4f8598701b_JaffaCakes118
-
Size
364KB
-
MD5
e58b5cbc91ac6c4f2d678e4f8598701b
-
SHA1
648b62a491da3029660b2161ab8c8d9afd950120
-
SHA256
94b3c000d56e9155ac9baa1fdf9eb99cad0c8d4e87cdd4c2648ed4d4d63c62c9
-
SHA512
8375ba268046c7e0a76035868b16456c2ddd9bf5505da7981c3d55170df50ff2a87ae5e99fabe937266ede7132f0776be47d52ac9991c3221176ea554bc235ef
-
SSDEEP
6144:MEkfaA5SdMZlC47Jvn3MO+mAnb6aoGPBVUEaUyw:OaA52ShBn87lnWsi+V
Score7/10-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Suspicious use of SetThreadContext
-