Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
f7536dd502445e1475bd0a7b12ec1f30_JaffaCakes118
-
Size
506KB
-
Sample
240418-fslc6adc4w
-
MD5
f7536dd502445e1475bd0a7b12ec1f30
-
SHA1
c39cea3e9b4ab0a11270a1696a6c28146f30106c
-
SHA256
39a545bae6f17d7d040fa95d01502a9ac3a12365afd49024ce144fe8e9aa905c
-
SHA512
938b38e3c78e2327e3d323079d42f0645b2204982d569eaa52aab6108e3b4d296e0dbddcb50c019a292108d8460a1063bcb09ad5780089f60c991e29624f2d5b
-
SSDEEP
12288:5yPe976VkfozHBmiS8io+XqJkZI03xYIV:tp6+6hJXpfgIsxYIV
Static task
static1
Behavioral task
behavioral1
Sample
f7536dd502445e1475bd0a7b12ec1f30_JaffaCakes118.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
f7536dd502445e1475bd0a7b12ec1f30_JaffaCakes118.exe
Resource
win10v2004-20240412-en
Malware Config
Targets
-
-
Target
f7536dd502445e1475bd0a7b12ec1f30_JaffaCakes118
-
Size
506KB
-
MD5
f7536dd502445e1475bd0a7b12ec1f30
-
SHA1
c39cea3e9b4ab0a11270a1696a6c28146f30106c
-
SHA256
39a545bae6f17d7d040fa95d01502a9ac3a12365afd49024ce144fe8e9aa905c
-
SHA512
938b38e3c78e2327e3d323079d42f0645b2204982d569eaa52aab6108e3b4d296e0dbddcb50c019a292108d8460a1063bcb09ad5780089f60c991e29624f2d5b
-
SSDEEP
12288:5yPe976VkfozHBmiS8io+XqJkZI03xYIV:tp6+6hJXpfgIsxYIV
Score7/10-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
Legitimate hosting services abused for malware hosting/C2
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-