Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
fe3cc33f61d6537b780ec831b2702e69_JaffaCakes118
-
Size
469KB
-
Sample
240421-c4lxaagh36
-
MD5
fe3cc33f61d6537b780ec831b2702e69
-
SHA1
b76837e6bd7e0e4a892db5012f5588c364dec3ae
-
SHA256
10459bf15b06bd9a38ad9fa4179ffa8c0dbb8ac84b38ee53eb315cc4c754f22f
-
SHA512
efbf9b14c9dcba1c5454600c4231e8937f648e227c6b237a672b417646e96ab4067defc3aa96fb1467cae19a8355622ae3acfe463991243e951ec52f20225d18
-
SSDEEP
12288:Fb7jkD3v0VBRxE5MBGlcM7UdTAT7UZWG1j3FLiUh:Fb3w3v8BRqEM7UdaU1j35i
Static task
static1
Behavioral task
behavioral1
Sample
fe3cc33f61d6537b780ec831b2702e69_JaffaCakes118.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
fe3cc33f61d6537b780ec831b2702e69_JaffaCakes118.exe
Resource
win10v2004-20240412-en
Malware Config
Targets
-
-
Target
fe3cc33f61d6537b780ec831b2702e69_JaffaCakes118
-
Size
469KB
-
MD5
fe3cc33f61d6537b780ec831b2702e69
-
SHA1
b76837e6bd7e0e4a892db5012f5588c364dec3ae
-
SHA256
10459bf15b06bd9a38ad9fa4179ffa8c0dbb8ac84b38ee53eb315cc4c754f22f
-
SHA512
efbf9b14c9dcba1c5454600c4231e8937f648e227c6b237a672b417646e96ab4067defc3aa96fb1467cae19a8355622ae3acfe463991243e951ec52f20225d18
-
SSDEEP
12288:Fb7jkD3v0VBRxE5MBGlcM7UdTAT7UZWG1j3FLiUh:Fb3w3v8BRqEM7UdaU1j35i
Score7/10-
Executes dropped EXE
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-
Drops file in System32 directory
-