Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
347c005511175e9cc2bed9b59ac51632_JaffaCakes118
-
Size
7.1MB
-
Sample
240511-n6sndsfa6s
-
MD5
347c005511175e9cc2bed9b59ac51632
-
SHA1
1aaa78c0bcd1cf807f67acc5f679c0f47b806822
-
SHA256
65876bbedd1ebdb6962019ce2db3b6a31aa37f87fddbebc1de4db7c4d9166f78
-
SHA512
1e6c981b24c3d1674eac28ecd66352927a269635cd6a4fd6e7c935cf35d76e7bfab01c71103b20752974e5ff4599a72b8e1959abcb94a4ff2554e4b37dc36104
-
SSDEEP
196608:Me6P9aFJFoPveiLSEVXSa+V6WlTUXHjWI:Me6PsFJF07LSE19+V65XDWI
Behavioral task
behavioral1
Sample
347c005511175e9cc2bed9b59ac51632_JaffaCakes118.exe
Resource
win7-20240508-en
Malware Config
Targets
-
-
Target
347c005511175e9cc2bed9b59ac51632_JaffaCakes118
-
Size
7.1MB
-
MD5
347c005511175e9cc2bed9b59ac51632
-
SHA1
1aaa78c0bcd1cf807f67acc5f679c0f47b806822
-
SHA256
65876bbedd1ebdb6962019ce2db3b6a31aa37f87fddbebc1de4db7c4d9166f78
-
SHA512
1e6c981b24c3d1674eac28ecd66352927a269635cd6a4fd6e7c935cf35d76e7bfab01c71103b20752974e5ff4599a72b8e1959abcb94a4ff2554e4b37dc36104
-
SSDEEP
196608:Me6P9aFJFoPveiLSEVXSa+V6WlTUXHjWI:Me6PsFJF07LSE19+V65XDWI
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Maps connected drives based on registry
Disk information is often read in order to detect sandboxing environments.
-
Suspicious use of SetThreadContext
-