Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    06a1e040a8e665181a1d3465192a9034_JaffaCakes118

  • Size

    1.9MB

  • Sample

    240429-c18xmsga4y

  • MD5

    06a1e040a8e665181a1d3465192a9034

  • SHA1

    36a8806d0ac5dd8c4305f04a5f6de1e1c6cbc49c

  • SHA256

    3aed581c952f55928cacc70d7de32a8c534a9bbb98ae916a2dd6b978c7e3dcfc

  • SHA512

    c3196ff1b3cf5e2051f5a8c26519a700d3c220c48a5d30dbb026dc9d4d48492096e012b7cdeb2bd05e6925cd44575435925628ac26d912ff7d27870bf4b1341d

  • SSDEEP

    49152:Lz071uv4BPMkibTIA5lCx7kvRWa4p/pOX:NABy

Score
10/10

Malware Config

Targets

    • Target

      06a1e040a8e665181a1d3465192a9034_JaffaCakes118

    • Size

      1.9MB

    • MD5

      06a1e040a8e665181a1d3465192a9034

    • SHA1

      36a8806d0ac5dd8c4305f04a5f6de1e1c6cbc49c

    • SHA256

      3aed581c952f55928cacc70d7de32a8c534a9bbb98ae916a2dd6b978c7e3dcfc

    • SHA512

      c3196ff1b3cf5e2051f5a8c26519a700d3c220c48a5d30dbb026dc9d4d48492096e012b7cdeb2bd05e6925cd44575435925628ac26d912ff7d27870bf4b1341d

    • SSDEEP

      49152:Lz071uv4BPMkibTIA5lCx7kvRWa4p/pOX:NABy

    Score
    10/10
    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

    • XMRig Miner payload

    • Blocklisted process makes network request

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Legitimate hosting services abused for malware hosting/C2

MITRE ATT&CK Enterprise v15

Tasks