Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2d32b6e42e9ca81ae04ad9b5d5a6f4ef_JaffaCakes118

  • Size

    1.9MB

  • Sample

    240510-efakfsce98

  • MD5

    2d32b6e42e9ca81ae04ad9b5d5a6f4ef

  • SHA1

    6fe29a47f4354304170156584aebc69357002498

  • SHA256

    973f74de3ec947a70f8d8c587d333b34d71f0fd56af8afb9b9579397a81d7bc3

  • SHA512

    635146905d1da5f5cc36628cd04a7076138ffc384f8f716be7f02047e7fa277342cb3edbb478ddfdccf8d098008705696573fa0dce81168444cf2d547d2d91eb

  • SSDEEP

    12288:nWot0bcbRqbHKwKKmZp06g76tVZaFf8s2nU3greO3PbkqQ14SuY8EwZ:nOcbUbHKwK5FBOVFGkq7S5UZ

Score
10/10

Malware Config

Targets

    • Target

      2d32b6e42e9ca81ae04ad9b5d5a6f4ef_JaffaCakes118

    • Size

      1.9MB

    • MD5

      2d32b6e42e9ca81ae04ad9b5d5a6f4ef

    • SHA1

      6fe29a47f4354304170156584aebc69357002498

    • SHA256

      973f74de3ec947a70f8d8c587d333b34d71f0fd56af8afb9b9579397a81d7bc3

    • SHA512

      635146905d1da5f5cc36628cd04a7076138ffc384f8f716be7f02047e7fa277342cb3edbb478ddfdccf8d098008705696573fa0dce81168444cf2d547d2d91eb

    • SSDEEP

      12288:nWot0bcbRqbHKwKKmZp06g76tVZaFf8s2nU3greO3PbkqQ14SuY8EwZ:nOcbUbHKwK5FBOVFGkq7S5UZ

    Score
    10/10
    • Modifies WinLogon for persistence

    • Adds policy Run key to start application

    • Modifies Installed Components in the registry

    • ASPack v2.12-2.42

      Detects executables packed with ASPack v2.12-2.42

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Modifies WinLogon

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks