Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
0d7f96202e0d47cc8d30b54e2b6ace6e_JaffaCakes118
-
Size
1.1MB
-
Sample
240502-e21zjaah42
-
MD5
0d7f96202e0d47cc8d30b54e2b6ace6e
-
SHA1
f8837765eeb00aceee36c2e7826dd1f1e045b59a
-
SHA256
c1b2bf2f69b11cab0f8670b8fabde528003a0be82d8c7004b7debcfc70808df3
-
SHA512
05a492a148f216cb8f15ea5266cef2b706e3c49920118c4fc58983d7e5a3162d53b14579fc339bae2079b16712c819ee3115d3f2a4b42b9da1735df41191d0a7
-
SSDEEP
24576:hJ5ap5bBL2o2YNinhidDWZ2Xqg/EXqh1tXf0It38pTHua4:jgjCo2edDmezdDXfV38dH74
Static task
static1
Behavioral task
behavioral1
Sample
0d7f96202e0d47cc8d30b54e2b6ace6e_JaffaCakes118.exe
Resource
win7-20240221-en
Behavioral task
behavioral2
Sample
0d7f96202e0d47cc8d30b54e2b6ace6e_JaffaCakes118.exe
Resource
win10v2004-20240419-en
Malware Config
Targets
-
-
Target
0d7f96202e0d47cc8d30b54e2b6ace6e_JaffaCakes118
-
Size
1.1MB
-
MD5
0d7f96202e0d47cc8d30b54e2b6ace6e
-
SHA1
f8837765eeb00aceee36c2e7826dd1f1e045b59a
-
SHA256
c1b2bf2f69b11cab0f8670b8fabde528003a0be82d8c7004b7debcfc70808df3
-
SHA512
05a492a148f216cb8f15ea5266cef2b706e3c49920118c4fc58983d7e5a3162d53b14579fc339bae2079b16712c819ee3115d3f2a4b42b9da1735df41191d0a7
-
SSDEEP
24576:hJ5ap5bBL2o2YNinhidDWZ2Xqg/EXqh1tXf0It38pTHua4:jgjCo2edDmezdDXfV38dH74
Score7/10-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Suspicious use of SetThreadContext
-