Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
fd11ac249cb3f7e0badda0815251b466_JaffaCakes118
-
Size
506KB
-
Sample
240420-sr8hhsbd98
-
MD5
fd11ac249cb3f7e0badda0815251b466
-
SHA1
b58b60c6b88cac464205506bf90ac40d2a91b540
-
SHA256
9e5a0587662160e2b9b00063c37969406df6ae4015628d6d0cd4b18179e7f6fa
-
SHA512
ca7bc69dccf7e0951b5bce3e0640ff0ea697042490fdf0f8e5a01bcb318f498face607917c0d9ef540af8ca060ebc26aab0a44f1287cb4ce57740e2a945b2a70
-
SSDEEP
12288:UXsylc1WmGX62m6gjx28EWld2XGkkTMmCDNXchcPAocNuVpa1+o/g:CsynjZpg2CBTTgiCAo4uVpfo/g
Static task
static1
Behavioral task
behavioral1
Sample
fd11ac249cb3f7e0badda0815251b466_JaffaCakes118.exe
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
fd11ac249cb3f7e0badda0815251b466_JaffaCakes118.exe
Resource
win10v2004-20240412-en
Malware Config
Targets
-
-
Target
fd11ac249cb3f7e0badda0815251b466_JaffaCakes118
-
Size
506KB
-
MD5
fd11ac249cb3f7e0badda0815251b466
-
SHA1
b58b60c6b88cac464205506bf90ac40d2a91b540
-
SHA256
9e5a0587662160e2b9b00063c37969406df6ae4015628d6d0cd4b18179e7f6fa
-
SHA512
ca7bc69dccf7e0951b5bce3e0640ff0ea697042490fdf0f8e5a01bcb318f498face607917c0d9ef540af8ca060ebc26aab0a44f1287cb4ce57740e2a945b2a70
-
SSDEEP
12288:UXsylc1WmGX62m6gjx28EWld2XGkkTMmCDNXchcPAocNuVpa1+o/g:CsynjZpg2CBTTgiCAo4uVpfo/g
Score7/10-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
Legitimate hosting services abused for malware hosting/C2
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-