Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    38f70ac1cf4072da6e340dc50012596c_JaffaCakes118

  • Size

    2.3MB

  • Sample

    240512-jdnrhsef9y

  • MD5

    38f70ac1cf4072da6e340dc50012596c

  • SHA1

    180dcd4b8d02db621886ccb7f038635341d545c7

  • SHA256

    af647f7792cc76974d8016eb25b303c41281f166c29af268a2fb5d6c9af409cd

  • SHA512

    30af5f95ed4f43d470046b311cb5057455c3ad515dcb93f72323be55d0250629ba42629e2937c16fc08c5bd51de79d222a14edc9b9de5e6fbbf3a0531e1136d6

  • SSDEEP

    49152:hQ9evMHpoXybxyU+v+C6b+mRE2bNnWe1gzRO0lPDbR:goylP+v+LjbNWmNY

Score
10/10

Malware Config

Targets

    • Target

      38f70ac1cf4072da6e340dc50012596c_JaffaCakes118

    • Size

      2.3MB

    • MD5

      38f70ac1cf4072da6e340dc50012596c

    • SHA1

      180dcd4b8d02db621886ccb7f038635341d545c7

    • SHA256

      af647f7792cc76974d8016eb25b303c41281f166c29af268a2fb5d6c9af409cd

    • SHA512

      30af5f95ed4f43d470046b311cb5057455c3ad515dcb93f72323be55d0250629ba42629e2937c16fc08c5bd51de79d222a14edc9b9de5e6fbbf3a0531e1136d6

    • SSDEEP

      49152:hQ9evMHpoXybxyU+v+C6b+mRE2bNnWe1gzRO0lPDbR:goylP+v+LjbNWmNY

    Score
    10/10
    • xmrig

      XMRig is a high performance, open source, cross platform CPU/GPU miner.

    • XMRig Miner payload

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

MITRE ATT&CK Enterprise v15

Tasks