Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
e96a9dbcc089237f78ec8c2fb417cd43_JaffaCakes118
-
Size
336KB
-
Sample
240409-htphbacd2v
-
MD5
e96a9dbcc089237f78ec8c2fb417cd43
-
SHA1
3bd4a49dc3efe6a3ad06e67a8dc4bae8a8a8b6c4
-
SHA256
c06acd7f6f4c44fc52d9f07b430079e12dc1b857c346818f0bd2064774d8df7b
-
SHA512
386fc40141d7a8e4295b1c00959eacb6414c3d450ec02bae6449bc3183dc5d9212098471d8023e2101ecba82595811273e98cd1a0128479511adac3a7936c1aa
-
SSDEEP
6144:208bRhsVZdfF8oVnzhstpwQvK+w8B0aRGJi4oAle0esKPUN4b8j7xyUg5JVcS:2B4V/fFbUpwTn8GJi4cxUN4b8jkUg5Jm
Malware Config
Targets
-
-
Target
e96a9dbcc089237f78ec8c2fb417cd43_JaffaCakes118
-
Size
336KB
-
MD5
e96a9dbcc089237f78ec8c2fb417cd43
-
SHA1
3bd4a49dc3efe6a3ad06e67a8dc4bae8a8a8b6c4
-
SHA256
c06acd7f6f4c44fc52d9f07b430079e12dc1b857c346818f0bd2064774d8df7b
-
SHA512
386fc40141d7a8e4295b1c00959eacb6414c3d450ec02bae6449bc3183dc5d9212098471d8023e2101ecba82595811273e98cd1a0128479511adac3a7936c1aa
-
SSDEEP
6144:208bRhsVZdfF8oVnzhstpwQvK+w8B0aRGJi4oAle0esKPUN4b8j7xyUg5JVcS:2B4V/fFbUpwTn8GJi4cxUN4b8jkUg5Jm
Score10/10-
Modifies WinLogon for persistence
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
Suspicious use of SetThreadContext
-