Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    0c0be2b1643ffe69aa761dfb6b913474_JaffaCakes118

  • Size

    588KB

  • Sample

    240501-rw5fzshb8v

  • MD5

    0c0be2b1643ffe69aa761dfb6b913474

  • SHA1

    bc8d5c410222c03f407f9635f824a0abb89786b0

  • SHA256

    2276bf380ed3985aabe183cc5d857f33e91281e14cf56548bec6dfb515f74965

  • SHA512

    f79afb88196711c2a0c7b598c3a1b28086bddfa99cd8c6590650b8031e1e00ae15b2f7468cbf5ff1c1c0d92487a75ec71ffdd5c376086a3af94d31a13a3858ba

  • SSDEEP

    12288:HXznQ+bCxWrUhLZvzC/igEhrNA9SNwyrYAmyhIna3PiGpYh7jw:qgIh0/iLhrekeKYAl4RNw

Score
7/10

Malware Config

Targets

    • Target

      0c0be2b1643ffe69aa761dfb6b913474_JaffaCakes118

    • Size

      588KB

    • MD5

      0c0be2b1643ffe69aa761dfb6b913474

    • SHA1

      bc8d5c410222c03f407f9635f824a0abb89786b0

    • SHA256

      2276bf380ed3985aabe183cc5d857f33e91281e14cf56548bec6dfb515f74965

    • SHA512

      f79afb88196711c2a0c7b598c3a1b28086bddfa99cd8c6590650b8031e1e00ae15b2f7468cbf5ff1c1c0d92487a75ec71ffdd5c376086a3af94d31a13a3858ba

    • SSDEEP

      12288:HXznQ+bCxWrUhLZvzC/igEhrNA9SNwyrYAmyhIna3PiGpYh7jw:qgIh0/iLhrekeKYAl4RNw

    Score
    7/10
    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • Loads dropped DLL

    • Maps connected drives based on registry

      Disk information is often read in order to detect sandboxing environments.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks