Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
fe043a8a6f140f41b505113bb8ed95a5_JaffaCakes118
-
Size
944KB
-
Sample
240421-aypd4see7x
-
MD5
fe043a8a6f140f41b505113bb8ed95a5
-
SHA1
1f3480f69adb3eb963ea19e17cca92a07a21c777
-
SHA256
50fe211af4c35fdfc2800374ce93abcca854aff9c0bd2443646d6b2badaa6379
-
SHA512
ce321dc886fd1a39948186cafdec0f533ddeb7d2c03aecb80760537666727efc63149eb74eff2b4793e9316ac9b505be978e45aa2ca8878faf521cc394ec0ada
-
SSDEEP
24576:vtmwccu2gQvgSsVSsLJeEdqcIu1MkFJ3y:vgwccqQvgSCSstLISMk3i
Behavioral task
behavioral1
Sample
fe043a8a6f140f41b505113bb8ed95a5_JaffaCakes118.exe
Resource
win7-20240221-en
Malware Config
Targets
-
-
Target
fe043a8a6f140f41b505113bb8ed95a5_JaffaCakes118
-
Size
944KB
-
MD5
fe043a8a6f140f41b505113bb8ed95a5
-
SHA1
1f3480f69adb3eb963ea19e17cca92a07a21c777
-
SHA256
50fe211af4c35fdfc2800374ce93abcca854aff9c0bd2443646d6b2badaa6379
-
SHA512
ce321dc886fd1a39948186cafdec0f533ddeb7d2c03aecb80760537666727efc63149eb74eff2b4793e9316ac9b505be978e45aa2ca8878faf521cc394ec0ada
-
SSDEEP
24576:vtmwccu2gQvgSsVSsLJeEdqcIu1MkFJ3y:vgwccqQvgSCSstLISMk3i
-
Detect Neshta payload
-
Neshta
Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Modifies system executable filetype association
-