Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    018038a1c98f481f5fd563e4c3cf9737_JaffaCakes118

  • Size

    1.9MB

  • Sample

    240426-x85v6sbd8z

  • MD5

    018038a1c98f481f5fd563e4c3cf9737

  • SHA1

    fa558cbac9f30b14b9f964845a590bc13e1f681e

  • SHA256

    a433e43ae8fc2a0215f02409bc1bf9cda6c751106ca9603127d06d75fd359ab8

  • SHA512

    0f966d7d4065df8291d455d07e191e4a10cc875ee832313411164da53cb62df67710346eb38d3da6caaf6177c19bdb8efbf9f357a4ddf5be63723e077dd330b7

  • SSDEEP

    49152:Lz071uv4BPMkibTIA5KIP7nTrmBhihM5xC+U4:NABr

Score
10/10

Malware Config

Targets

    • Target

      018038a1c98f481f5fd563e4c3cf9737_JaffaCakes118

    • Size

      1.9MB

    • MD5

      018038a1c98f481f5fd563e4c3cf9737

    • SHA1

      fa558cbac9f30b14b9f964845a590bc13e1f681e

    • SHA256

      a433e43ae8fc2a0215f02409bc1bf9cda6c751106ca9603127d06d75fd359ab8

    • SHA512

      0f966d7d4065df8291d455d07e191e4a10cc875ee832313411164da53cb62df67710346eb38d3da6caaf6177c19bdb8efbf9f357a4ddf5be63723e077dd330b7

    • SSDEEP

      49152:Lz071uv4BPMkibTIA5KIP7nTrmBhihM5xC+U4:NABr

    Score
    10/10
    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

    • XMRig Miner payload

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Legitimate hosting services abused for malware hosting/C2

MITRE ATT&CK Enterprise v15

Tasks