Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    f7536dd502445e1475bd0a7b12ec1f30_JaffaCakes118

  • Size

    506KB

  • Sample

    240418-fslc6adc4w

  • MD5

    f7536dd502445e1475bd0a7b12ec1f30

  • SHA1

    c39cea3e9b4ab0a11270a1696a6c28146f30106c

  • SHA256

    39a545bae6f17d7d040fa95d01502a9ac3a12365afd49024ce144fe8e9aa905c

  • SHA512

    938b38e3c78e2327e3d323079d42f0645b2204982d569eaa52aab6108e3b4d296e0dbddcb50c019a292108d8460a1063bcb09ad5780089f60c991e29624f2d5b

  • SSDEEP

    12288:5yPe976VkfozHBmiS8io+XqJkZI03xYIV:tp6+6hJXpfgIsxYIV

Score
7/10

Malware Config

Targets

    • Target

      f7536dd502445e1475bd0a7b12ec1f30_JaffaCakes118

    • Size

      506KB

    • MD5

      f7536dd502445e1475bd0a7b12ec1f30

    • SHA1

      c39cea3e9b4ab0a11270a1696a6c28146f30106c

    • SHA256

      39a545bae6f17d7d040fa95d01502a9ac3a12365afd49024ce144fe8e9aa905c

    • SHA512

      938b38e3c78e2327e3d323079d42f0645b2204982d569eaa52aab6108e3b4d296e0dbddcb50c019a292108d8460a1063bcb09ad5780089f60c991e29624f2d5b

    • SSDEEP

      12288:5yPe976VkfozHBmiS8io+XqJkZI03xYIV:tp6+6hJXpfgIsxYIV

    Score
    7/10
    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Legitimate hosting services abused for malware hosting/C2

    • Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Enterprise v15

Tasks