Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    fc2a11f6b8570fc51b601515a517627f_JaffaCakes118

  • Size

    91KB

  • Sample

    240420-hh4g4abe61

  • MD5

    fc2a11f6b8570fc51b601515a517627f

  • SHA1

    11ecc7097d9097ef2db9d7f6db3c369fff4d7f33

  • SHA256

    a1ccf8f066aa22a586369c6115bec02db59477e25dbc8af362e070cd3ab0afd9

  • SHA512

    2ab93991749045c7920fedc868d8c5d10d08de10cee8da7cc9aebe0db5f91c9391a2b713473e6187f7e7346fb5d33c11ede38f7633025b6076c7abf1bb8a73e8

  • SSDEEP

    1536:q6yvcM7elmDwtS3C6h5Z0arJOBk/Hop+Nc+zb5:q64ckJDTBZjrJOBGo5Gb

Score
10/10

Malware Config

Targets

    • Target

      fc2a11f6b8570fc51b601515a517627f_JaffaCakes118

    • Size

      91KB

    • MD5

      fc2a11f6b8570fc51b601515a517627f

    • SHA1

      11ecc7097d9097ef2db9d7f6db3c369fff4d7f33

    • SHA256

      a1ccf8f066aa22a586369c6115bec02db59477e25dbc8af362e070cd3ab0afd9

    • SHA512

      2ab93991749045c7920fedc868d8c5d10d08de10cee8da7cc9aebe0db5f91c9391a2b713473e6187f7e7346fb5d33c11ede38f7633025b6076c7abf1bb8a73e8

    • SSDEEP

      1536:q6yvcM7elmDwtS3C6h5Z0arJOBk/Hop+Nc+zb5:q64ckJDTBZjrJOBGo5Gb

    Score
    10/10
    • Modifies firewall policy service

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks