Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2e1f040599a36da06a205482d767531c_JaffaCakes118
-
Size
6.6MB
-
Sample
240510-jtz5gsbf9v
-
MD5
2e1f040599a36da06a205482d767531c
-
SHA1
7573874118e9f77ea978df1bbf0371bd76c77e9e
-
SHA256
2f8e7af40db61bbe4387759e79307f39b388f3261e46f4c28a11c71ad04aa604
-
SHA512
c8462d96cbeb540383bc24053886b7972d83bc1b363736f9638ddcba2fc86c71ff927a4f704993d550c83b40cb1ac3da813dc2dee10ea6916729327fca95913c
-
SSDEEP
196608:WpGu/lIOltK5wslSljZ5BArz5LltH04w1XHXrl+9a9O:Vu/lXkwSSld505Lcz1XHXh+Y9O
Behavioral task
behavioral1
Sample
2e1f040599a36da06a205482d767531c_JaffaCakes118.exe
Resource
win7-20240508-en
Malware Config
Targets
-
-
Target
2e1f040599a36da06a205482d767531c_JaffaCakes118
-
Size
6.6MB
-
MD5
2e1f040599a36da06a205482d767531c
-
SHA1
7573874118e9f77ea978df1bbf0371bd76c77e9e
-
SHA256
2f8e7af40db61bbe4387759e79307f39b388f3261e46f4c28a11c71ad04aa604
-
SHA512
c8462d96cbeb540383bc24053886b7972d83bc1b363736f9638ddcba2fc86c71ff927a4f704993d550c83b40cb1ac3da813dc2dee10ea6916729327fca95913c
-
SSDEEP
196608:WpGu/lIOltK5wslSljZ5BArz5LltH04w1XHXrl+9a9O:Vu/lXkwSSld505Lcz1XHXh+Y9O
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Maps connected drives based on registry
Disk information is often read in order to detect sandboxing environments.
-
Suspicious use of SetThreadContext
-