Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    08c135bf6deb09a8683bf9c4a099c1be_JaffaCakes118

  • Size

    1.9MB

  • Sample

    240430-b969qshe2z

  • MD5

    08c135bf6deb09a8683bf9c4a099c1be

  • SHA1

    f81ef61cb07030da178bb28005d5214f909a0135

  • SHA256

    2dcb3b067ba5d037cc367dd6749534130cd62a986ac0dac78fcf895fc69942ac

  • SHA512

    7b096f02b1e1151cf7335cf21cf223c463dcddb9b758769378910be507afe612e13723b82e3ac6db299dfb52975af3f4774a1a152b6fdbbf795abe2c86ba3910

  • SSDEEP

    49152:Lz071uv4BPMkibTIA5KIP7nTrmBhihM5xC+U1g:NABH

Score
10/10

Malware Config

Targets

    • Target

      08c135bf6deb09a8683bf9c4a099c1be_JaffaCakes118

    • Size

      1.9MB

    • MD5

      08c135bf6deb09a8683bf9c4a099c1be

    • SHA1

      f81ef61cb07030da178bb28005d5214f909a0135

    • SHA256

      2dcb3b067ba5d037cc367dd6749534130cd62a986ac0dac78fcf895fc69942ac

    • SHA512

      7b096f02b1e1151cf7335cf21cf223c463dcddb9b758769378910be507afe612e13723b82e3ac6db299dfb52975af3f4774a1a152b6fdbbf795abe2c86ba3910

    • SSDEEP

      49152:Lz071uv4BPMkibTIA5KIP7nTrmBhihM5xC+U1g:NABH

    Score
    10/10
    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

    • XMRig Miner payload

    • Blocklisted process makes network request

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Legitimate hosting services abused for malware hosting/C2

MITRE ATT&CK Enterprise v15

Tasks