Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    347c005511175e9cc2bed9b59ac51632_JaffaCakes118

  • Size

    7.1MB

  • Sample

    240511-n6sndsfa6s

  • MD5

    347c005511175e9cc2bed9b59ac51632

  • SHA1

    1aaa78c0bcd1cf807f67acc5f679c0f47b806822

  • SHA256

    65876bbedd1ebdb6962019ce2db3b6a31aa37f87fddbebc1de4db7c4d9166f78

  • SHA512

    1e6c981b24c3d1674eac28ecd66352927a269635cd6a4fd6e7c935cf35d76e7bfab01c71103b20752974e5ff4599a72b8e1959abcb94a4ff2554e4b37dc36104

  • SSDEEP

    196608:Me6P9aFJFoPveiLSEVXSa+V6WlTUXHjWI:Me6PsFJF07LSE19+V65XDWI

Score
7/10

Malware Config

Targets

    • Target

      347c005511175e9cc2bed9b59ac51632_JaffaCakes118

    • Size

      7.1MB

    • MD5

      347c005511175e9cc2bed9b59ac51632

    • SHA1

      1aaa78c0bcd1cf807f67acc5f679c0f47b806822

    • SHA256

      65876bbedd1ebdb6962019ce2db3b6a31aa37f87fddbebc1de4db7c4d9166f78

    • SHA512

      1e6c981b24c3d1674eac28ecd66352927a269635cd6a4fd6e7c935cf35d76e7bfab01c71103b20752974e5ff4599a72b8e1959abcb94a4ff2554e4b37dc36104

    • SSDEEP

      196608:Me6P9aFJFoPveiLSEVXSa+V6WlTUXHjWI:Me6PsFJF07LSE19+V65XDWI

    Score
    7/10
    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Maps connected drives based on registry

      Disk information is often read in order to detect sandboxing environments.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks