Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
e8505a358cab1fbb9edc8abc1d170d2d_JaffaCakes118
-
Size
912KB
-
Sample
240408-yx9knadh5v
-
MD5
e8505a358cab1fbb9edc8abc1d170d2d
-
SHA1
5b1f5f90ad4d612f31bcab1549170815925c5673
-
SHA256
4f137f45b2887c81a65523d34bf4ff86eb5a96bde47ed7114c1b72e419fea31f
-
SHA512
6393bdc6613e262b242f769a34f14dd19f3e7db300ff8d16abac715ef7d32e45908517e2b02c5db0dc5314bf31f242b75353d6c1e5129ae9e29185b992204d31
-
SSDEEP
12288:UZWtI6RkHeZJys73dOvXDpNjNe8mKuxerQZb+md4w1UWOB0H:UuhaHeZJ8NI8SerQZb+md4wmWOM
Malware Config
Targets
-
-
Target
e8505a358cab1fbb9edc8abc1d170d2d_JaffaCakes118
-
Size
912KB
-
MD5
e8505a358cab1fbb9edc8abc1d170d2d
-
SHA1
5b1f5f90ad4d612f31bcab1549170815925c5673
-
SHA256
4f137f45b2887c81a65523d34bf4ff86eb5a96bde47ed7114c1b72e419fea31f
-
SHA512
6393bdc6613e262b242f769a34f14dd19f3e7db300ff8d16abac715ef7d32e45908517e2b02c5db0dc5314bf31f242b75353d6c1e5129ae9e29185b992204d31
-
SSDEEP
12288:UZWtI6RkHeZJys73dOvXDpNjNe8mKuxerQZb+md4w1UWOB0H:UuhaHeZJ8NI8SerQZb+md4wmWOM
Score10/10-
Modifies visibility of file extensions in Explorer
-
Blocks application from running via registry modification
Adds application to list of disallowed applications.
-
Sets file execution options in registry
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-
Drops file in System32 directory
-