Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
e8274471213b3d4a5ab49042def71d00_JaffaCakes118
-
Size
804KB
-
Sample
240408-xdny6sge54
-
MD5
e8274471213b3d4a5ab49042def71d00
-
SHA1
b3206ed4b3c3c60572df0f98b49e610e7804a7f6
-
SHA256
e389a939f35aee9a9706fadd7bcb97ff7ef92ee1a1857121c83cbd760d946928
-
SHA512
964b6462778208a313a9b2f0ece402c2d5028a4a0f169c3fae40b7d5cc8b9f5dafb87c477c5c546efef38c7177158a8e5a1a004d5f94262fdc75ffaf4691e190
-
SSDEEP
24576:z6Izw8F12PphBqQ5wCp13KSVXfECVe9Y+gbbI4kD:z678FkPprmQaSBu9ubI
Behavioral task
behavioral1
Sample
e8274471213b3d4a5ab49042def71d00_JaffaCakes118.exe
Resource
win7-20240319-en
Malware Config
Targets
-
-
Target
e8274471213b3d4a5ab49042def71d00_JaffaCakes118
-
Size
804KB
-
MD5
e8274471213b3d4a5ab49042def71d00
-
SHA1
b3206ed4b3c3c60572df0f98b49e610e7804a7f6
-
SHA256
e389a939f35aee9a9706fadd7bcb97ff7ef92ee1a1857121c83cbd760d946928
-
SHA512
964b6462778208a313a9b2f0ece402c2d5028a4a0f169c3fae40b7d5cc8b9f5dafb87c477c5c546efef38c7177158a8e5a1a004d5f94262fdc75ffaf4691e190
-
SSDEEP
24576:z6Izw8F12PphBqQ5wCp13KSVXfECVe9Y+gbbI4kD:z678FkPprmQaSBu9ubI
-
Identifies Wine through registry keys
Wine is a compatibility layer capable of running Windows applications, which can be used as sandboxing environment.
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-