Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    0465fc0f0cefb5e2e2d5bebb2d2ef8a2_JaffaCakes118

  • Size

    1.8MB

  • Sample

    240428-fcb5jsgc95

  • MD5

    0465fc0f0cefb5e2e2d5bebb2d2ef8a2

  • SHA1

    866e685b73ebbd69f93422cc32c48ec039b507a2

  • SHA256

    8306985efa9e1df79d4f1651a907d4aad9f462c1e36130fd3cd77122f033df57

  • SHA512

    7e1de901855b6fdc9cb96284a9a7194a8ad8f43a29d0f93b7305d7dcf6cb03e1f09c5645de3384d3a13aad80cce134de2a825eb1c5dc114532240d201e651294

  • SSDEEP

    49152:Lz071uv4BPMkibTIA5sf6r+WVc2HhG82SflDrl8Q:NABa

Score
10/10

Malware Config

Targets

    • Target

      0465fc0f0cefb5e2e2d5bebb2d2ef8a2_JaffaCakes118

    • Size

      1.8MB

    • MD5

      0465fc0f0cefb5e2e2d5bebb2d2ef8a2

    • SHA1

      866e685b73ebbd69f93422cc32c48ec039b507a2

    • SHA256

      8306985efa9e1df79d4f1651a907d4aad9f462c1e36130fd3cd77122f033df57

    • SHA512

      7e1de901855b6fdc9cb96284a9a7194a8ad8f43a29d0f93b7305d7dcf6cb03e1f09c5645de3384d3a13aad80cce134de2a825eb1c5dc114532240d201e651294

    • SSDEEP

      49152:Lz071uv4BPMkibTIA5sf6r+WVc2HhG82SflDrl8Q:NABa

    Score
    10/10
    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

    • XMRig Miner payload

    • Blocklisted process makes network request

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Legitimate hosting services abused for malware hosting/C2

MITRE ATT&CK Enterprise v15

Tasks