Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    eebc14dc671e8987bfbf8a7324d39c32_JaffaCakes118.exe

  • Size

    52KB

  • Sample

    240504-yy9xtach79

  • MD5

    eebc14dc671e8987bfbf8a7324d39c32

  • SHA1

    31aca267dd6fe314db15eeb0e64f6ce8eb3b7ec1

  • SHA256

    0b045e2dbcc371b3cda3ed893de3bb407aa42e063b86d71e3ef8f3a68ec804d1

  • SHA512

    ab71ae56a7b9219ef8a9ea03dd20d40a8ec369e385b2384dbcee3cd7518339ebcfbd8361c6583928957687e1fcb2bba76545ed4de00106ae1b03864f77913264

  • SSDEEP

    1536:N5VzcfA/6LrVpL74gfh16nHNq5DwhQBlr4suu0Fc/hd:/V2A/gVh74gpgt00h+0Fc/hd

Malware Config

Targets

    • Target

      eebc14dc671e8987bfbf8a7324d39c32_JaffaCakes118.exe

    • Size

      52KB

    • MD5

      eebc14dc671e8987bfbf8a7324d39c32

    • SHA1

      31aca267dd6fe314db15eeb0e64f6ce8eb3b7ec1

    • SHA256

      0b045e2dbcc371b3cda3ed893de3bb407aa42e063b86d71e3ef8f3a68ec804d1

    • SHA512

      ab71ae56a7b9219ef8a9ea03dd20d40a8ec369e385b2384dbcee3cd7518339ebcfbd8361c6583928957687e1fcb2bba76545ed4de00106ae1b03864f77913264

    • SSDEEP

      1536:N5VzcfA/6LrVpL74gfh16nHNq5DwhQBlr4suu0Fc/hd:/V2A/gVh74gpgt00h+0Fc/hd

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks