Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    0d7f96202e0d47cc8d30b54e2b6ace6e_JaffaCakes118

  • Size

    1.1MB

  • Sample

    240502-e21zjaah42

  • MD5

    0d7f96202e0d47cc8d30b54e2b6ace6e

  • SHA1

    f8837765eeb00aceee36c2e7826dd1f1e045b59a

  • SHA256

    c1b2bf2f69b11cab0f8670b8fabde528003a0be82d8c7004b7debcfc70808df3

  • SHA512

    05a492a148f216cb8f15ea5266cef2b706e3c49920118c4fc58983d7e5a3162d53b14579fc339bae2079b16712c819ee3115d3f2a4b42b9da1735df41191d0a7

  • SSDEEP

    24576:hJ5ap5bBL2o2YNinhidDWZ2Xqg/EXqh1tXf0It38pTHua4:jgjCo2edDmezdDXfV38dH74

Malware Config

Targets

    • Target

      0d7f96202e0d47cc8d30b54e2b6ace6e_JaffaCakes118

    • Size

      1.1MB

    • MD5

      0d7f96202e0d47cc8d30b54e2b6ace6e

    • SHA1

      f8837765eeb00aceee36c2e7826dd1f1e045b59a

    • SHA256

      c1b2bf2f69b11cab0f8670b8fabde528003a0be82d8c7004b7debcfc70808df3

    • SHA512

      05a492a148f216cb8f15ea5266cef2b706e3c49920118c4fc58983d7e5a3162d53b14579fc339bae2079b16712c819ee3115d3f2a4b42b9da1735df41191d0a7

    • SSDEEP

      24576:hJ5ap5bBL2o2YNinhidDWZ2Xqg/EXqh1tXf0It38pTHua4:jgjCo2edDmezdDXfV38dH74

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks