Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
fcce10c26770bd9f2c5ad6f16cd95f11_JaffaCakes118
-
Size
697KB
-
Sample
240420-p3xnlshb35
-
MD5
fcce10c26770bd9f2c5ad6f16cd95f11
-
SHA1
994913ff98a3e36c15047b0c3ed269a5c4082d10
-
SHA256
cb960504fd796ca7ce5e4a00318a123a978e2585478464eddaa21aaef4165e1a
-
SHA512
ce6d97972a24d5d9cbbcb4de41eae3f0844ec9236867954663c3b3dacfbd343c9b323882d0532e949ca0ded0c2eb0284fcc9a1d05a407f4ceb939be691426520
-
SSDEEP
12288:Z8rnt0EnGRzNJphx+0Z314ypeyMZlnctm1g1HZ7Q1ujjaZq7g76F:sSRzNJjpZ314GVMZln4mS1HZ7Q1ujjaI
Static task
static1
Behavioral task
behavioral1
Sample
fcce10c26770bd9f2c5ad6f16cd95f11_JaffaCakes118.dll
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
fcce10c26770bd9f2c5ad6f16cd95f11_JaffaCakes118.dll
Resource
win10v2004-20240412-en
Malware Config
Targets
-
-
Target
fcce10c26770bd9f2c5ad6f16cd95f11_JaffaCakes118
-
Size
697KB
-
MD5
fcce10c26770bd9f2c5ad6f16cd95f11
-
SHA1
994913ff98a3e36c15047b0c3ed269a5c4082d10
-
SHA256
cb960504fd796ca7ce5e4a00318a123a978e2585478464eddaa21aaef4165e1a
-
SHA512
ce6d97972a24d5d9cbbcb4de41eae3f0844ec9236867954663c3b3dacfbd343c9b323882d0532e949ca0ded0c2eb0284fcc9a1d05a407f4ceb939be691426520
-
SSDEEP
12288:Z8rnt0EnGRzNJphx+0Z314ypeyMZlnctm1g1HZ7Q1ujjaZq7g76F:sSRzNJjpZ314GVMZln4mS1HZ7Q1ujjaI
Score6/10-
Adds Run key to start application
-
Maps connected drives based on registry
Disk information is often read in order to detect sandboxing environments.
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Browser Extensions
1Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1