Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    79e1394448df65d1ce351e60fe4bd4b8_JaffaCakes118.exe

  • Size

    256KB

  • Sample

    240504-ybajfabg25

  • MD5

    79e1394448df65d1ce351e60fe4bd4b8

  • SHA1

    52d5a07cbd4940e6f9913c6c08c85227d271e4d7

  • SHA256

    7acf5c048cb3874114a18d378c5c98713e22baa3376dbd7de775d2f246d7a6c3

  • SHA512

    0aa8462a27aedd094f2cdaa00fd615873a2b12001c4e4faecfebeeaca1c46d32d051b40c0e3c43379e4720123476656354228869917e36c0dadbc17136e510a9

  • SSDEEP

    6144:SDyQfUWjjlpmmxieQbWGRdA6sQc/Yp7TVX3J/1awbWGRdA6sQc/YRU:oHlpJxifbWGRdA6sQhPbWGRdA6sQxU

Malware Config

Targets

    • Target

      79e1394448df65d1ce351e60fe4bd4b8_JaffaCakes118.exe

    • Size

      256KB

    • MD5

      79e1394448df65d1ce351e60fe4bd4b8

    • SHA1

      52d5a07cbd4940e6f9913c6c08c85227d271e4d7

    • SHA256

      7acf5c048cb3874114a18d378c5c98713e22baa3376dbd7de775d2f246d7a6c3

    • SHA512

      0aa8462a27aedd094f2cdaa00fd615873a2b12001c4e4faecfebeeaca1c46d32d051b40c0e3c43379e4720123476656354228869917e36c0dadbc17136e510a9

    • SSDEEP

      6144:SDyQfUWjjlpmmxieQbWGRdA6sQc/Yp7TVX3J/1awbWGRdA6sQc/YRU:oHlpJxifbWGRdA6sQhPbWGRdA6sQxU

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Malware Dropper & Backdoor - Berbew

      Berbew is a backdoor Trojan malware with capabilities to download and install a range of additional malicious software, such as other Trojans, ransomware, and cryptominers.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks