Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
faeb8d4f45d421415cc765929307a38f_JaffaCakes118
-
Size
158KB
-
Sample
240419-w8k1bsda5z
-
MD5
faeb8d4f45d421415cc765929307a38f
-
SHA1
8481beef0a651464d70f6f85c8e3fcd21afe1e4e
-
SHA256
d56d7a34bfafd4cb0ee8a63440bd77dc19a64fe9acb94f372b70d53f76327b03
-
SHA512
ffa36bbbaae069ac310aa5af351a74f75aa6fbfdc9af4bd5ff957e63552f9650b4c800ef9995847fa64f83db2566512b800cdfde0a0d650e5e0ae59b27106c5a
-
SSDEEP
3072:SpJDFUXhHxJPzCmyhV5SLI4Jf9xgZlGYN594LzsHJDu:SvDFUxHjbXyhCcgFaXVLeQHJ6
Static task
static1
Behavioral task
behavioral1
Sample
faeb8d4f45d421415cc765929307a38f_JaffaCakes118.exe
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
faeb8d4f45d421415cc765929307a38f_JaffaCakes118.exe
Resource
win10v2004-20240412-en
Malware Config
Extracted
metasploit
encoder/fnstenv_mov
Targets
-
-
Target
faeb8d4f45d421415cc765929307a38f_JaffaCakes118
-
Size
158KB
-
MD5
faeb8d4f45d421415cc765929307a38f
-
SHA1
8481beef0a651464d70f6f85c8e3fcd21afe1e4e
-
SHA256
d56d7a34bfafd4cb0ee8a63440bd77dc19a64fe9acb94f372b70d53f76327b03
-
SHA512
ffa36bbbaae069ac310aa5af351a74f75aa6fbfdc9af4bd5ff957e63552f9650b4c800ef9995847fa64f83db2566512b800cdfde0a0d650e5e0ae59b27106c5a
-
SSDEEP
3072:SpJDFUXhHxJPzCmyhV5SLI4Jf9xgZlGYN594LzsHJDu:SvDFUxHjbXyhCcgFaXVLeQHJ6
Score10/10-
MetaSploit
Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-