Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    ec5e7e3130e74b990c0be814058118bf_JaffaCakes118

  • Size

    45KB

  • Sample

    240411-bg5v7sbb7z

  • MD5

    ec5e7e3130e74b990c0be814058118bf

  • SHA1

    7e735e485321f9260007b1fe86b81ad514374987

  • SHA256

    b38a4554e2730f5a5b5d42d277908de268e2a1b7297347296e34fdecbaa81d0d

  • SHA512

    a03111c766d4c00560b1b4b635c57f6c05a704dc44c30f86315a1894c57a8e4c0852fc4f05a85184eb682fbea81ec9239098384ea569835800a26f93f5194ad4

  • SSDEEP

    768:Y1QNQMBO3Mqe9KZb0LB+8vGMRXyonbcuyD7UURfUJLJAnbcuyD7U:aQGeO3MB9KeY8vGMRXfnouy8z4nouy8

Malware Config

Targets

    • Target

      ec5e7e3130e74b990c0be814058118bf_JaffaCakes118

    • Size

      45KB

    • MD5

      ec5e7e3130e74b990c0be814058118bf

    • SHA1

      7e735e485321f9260007b1fe86b81ad514374987

    • SHA256

      b38a4554e2730f5a5b5d42d277908de268e2a1b7297347296e34fdecbaa81d0d

    • SHA512

      a03111c766d4c00560b1b4b635c57f6c05a704dc44c30f86315a1894c57a8e4c0852fc4f05a85184eb682fbea81ec9239098384ea569835800a26f93f5194ad4

    • SSDEEP

      768:Y1QNQMBO3Mqe9KZb0LB+8vGMRXyonbcuyD7UURfUJLJAnbcuyD7U:aQGeO3MB9KeY8vGMRXfnouy8z4nouy8

    • Adds policy Run key to start application

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

MITRE ATT&CK Enterprise v15

Tasks