Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    0bc91ea079ca7449ac0d895063ec3455_JaffaCakes118

  • Size

    2.2MB

  • Sample

    240501-pjapqsef6t

  • MD5

    0bc91ea079ca7449ac0d895063ec3455

  • SHA1

    6eede3bafc2b67a059acb5a514ea8d08f6e7c147

  • SHA256

    d515cb3a419f1d04d5943a94464105336f19679c67659ae0a9a02426dcfd71a5

  • SHA512

    c64a82a6820402c3db65adac2016c758d0ab4eaceac672ab39a74baa92d787f28a12cce00c73a6c94989b7df8cf38b0e80af3c59deb50567973b5c90ccbac96a

  • SSDEEP

    49152:Lz071uv4BPMkibTIA5sf6r+WVc2HhG82g1VQx7Va4qrf0pt:NABT

Score
10/10

Malware Config

Targets

    • Target

      0bc91ea079ca7449ac0d895063ec3455_JaffaCakes118

    • Size

      2.2MB

    • MD5

      0bc91ea079ca7449ac0d895063ec3455

    • SHA1

      6eede3bafc2b67a059acb5a514ea8d08f6e7c147

    • SHA256

      d515cb3a419f1d04d5943a94464105336f19679c67659ae0a9a02426dcfd71a5

    • SHA512

      c64a82a6820402c3db65adac2016c758d0ab4eaceac672ab39a74baa92d787f28a12cce00c73a6c94989b7df8cf38b0e80af3c59deb50567973b5c90ccbac96a

    • SSDEEP

      49152:Lz071uv4BPMkibTIA5sf6r+WVc2HhG82g1VQx7Va4qrf0pt:NABT

    Score
    10/10
    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

    • XMRig Miner payload

    • Blocklisted process makes network request

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Legitimate hosting services abused for malware hosting/C2

MITRE ATT&CK Enterprise v15

Tasks