Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
e5a85d475a6b7669a0b5bbb6c2c5078a_JaffaCakes118
-
Size
237KB
-
Sample
240407-xw2mzsbh61
-
MD5
e5a85d475a6b7669a0b5bbb6c2c5078a
-
SHA1
24d4d546b3e96105037e913550d23ac40a0ab2d9
-
SHA256
66ad1b1b4a90fa1dec7af26959acfb6e495d02bbb6702b76f8c66e2db364f086
-
SHA512
2c98f60b00930540c760b178fc26466607d0dbe92fe60decd96b0010db643e04cec8fafc4599ec366930bae130f51ec711c2f2903d8a4d980cd6eff9f6bd6b75
-
SSDEEP
3072:/cT9g8immW6Pozkk2eKs/CSr2nQ/E2S5ny+bF2u1I+ddDK7Hlq/B8Wh1thz/nWVc:o68i3odBiTl2+TCU/t1thznQC4hM
Static task
static1
Behavioral task
behavioral1
Sample
e5a85d475a6b7669a0b5bbb6c2c5078a_JaffaCakes118.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
e5a85d475a6b7669a0b5bbb6c2c5078a_JaffaCakes118.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
e5a85d475a6b7669a0b5bbb6c2c5078a_JaffaCakes118
-
Size
237KB
-
MD5
e5a85d475a6b7669a0b5bbb6c2c5078a
-
SHA1
24d4d546b3e96105037e913550d23ac40a0ab2d9
-
SHA256
66ad1b1b4a90fa1dec7af26959acfb6e495d02bbb6702b76f8c66e2db364f086
-
SHA512
2c98f60b00930540c760b178fc26466607d0dbe92fe60decd96b0010db643e04cec8fafc4599ec366930bae130f51ec711c2f2903d8a4d980cd6eff9f6bd6b75
-
SSDEEP
3072:/cT9g8immW6Pozkk2eKs/CSr2nQ/E2S5ny+bF2u1I+ddDK7Hlq/B8Wh1thz/nWVc:o68i3odBiTl2+TCU/t1thznQC4hM
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Adds Run key to start application
-