Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
eb741c29f99072cc48295b620a197f37_JaffaCakes118
-
Size
1000KB
-
Sample
240410-tlcdkagf5w
-
MD5
eb741c29f99072cc48295b620a197f37
-
SHA1
2ab7501a5ea8228d951339ebfa61fde89c583430
-
SHA256
030ac10d634e80878f188dc50c4a8c8a075e74c52a3bb5e6dbf48d934628c502
-
SHA512
b38801cd698efd58386cfb25b30deeaffc7c561219a6ae72055fda485ffa0bc2ef629b26518268797e017bb3a91bd8b26a70113bd264452e4c1671feb703d3af
-
SSDEEP
24576:/Tq7w2KvADK0Yfux8PAO9YmpV6FKyCTPR1B+5vMiqt0gj2ed:/p2MeKyxCBYKy6qOL
Static task
static1
Behavioral task
behavioral1
Sample
eb741c29f99072cc48295b620a197f37_JaffaCakes118.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
eb741c29f99072cc48295b620a197f37_JaffaCakes118.exe
Resource
win10v2004-20240226-en
Malware Config
Targets
-
-
Target
eb741c29f99072cc48295b620a197f37_JaffaCakes118
-
Size
1000KB
-
MD5
eb741c29f99072cc48295b620a197f37
-
SHA1
2ab7501a5ea8228d951339ebfa61fde89c583430
-
SHA256
030ac10d634e80878f188dc50c4a8c8a075e74c52a3bb5e6dbf48d934628c502
-
SHA512
b38801cd698efd58386cfb25b30deeaffc7c561219a6ae72055fda485ffa0bc2ef629b26518268797e017bb3a91bd8b26a70113bd264452e4c1671feb703d3af
-
SSDEEP
24576:/Tq7w2KvADK0Yfux8PAO9YmpV6FKyCTPR1B+5vMiqt0gj2ed:/p2MeKyxCBYKy6qOL
Score7/10-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
Legitimate hosting services abused for malware hosting/C2
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-