Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    394cd0d1768d2bd339dbaa706fecd20a_JaffaCakes118

  • Size

    5.3MB

  • Sample

    240512-kx9c1aha8s

  • MD5

    394cd0d1768d2bd339dbaa706fecd20a

  • SHA1

    76443441e41569c6ddf5f43d1051cc1eee473148

  • SHA256

    e6eeded081cf80f91ca00b55ad3088c6a6550abaf84c16dd17d20bad5b946ed3

  • SHA512

    1abe1c0938a179650caf8ce60b32174407ca6566975e24b79c2e427c024d2dfc90765c9c5c27a297dfabd755d3df5af9349c335bc792558636850ea5f6a4eb96

  • SSDEEP

    98304:jDL2yWQlwHwPmiE+E+JIn/+W3i7ptP4jAJggEYKTud10ZuBhRbGa9AbY5:SfQlrmi++JC/y7p1qAph0+RbGa9Ac5

Score
7/10

Malware Config

Targets

    • Target

      394cd0d1768d2bd339dbaa706fecd20a_JaffaCakes118

    • Size

      5.3MB

    • MD5

      394cd0d1768d2bd339dbaa706fecd20a

    • SHA1

      76443441e41569c6ddf5f43d1051cc1eee473148

    • SHA256

      e6eeded081cf80f91ca00b55ad3088c6a6550abaf84c16dd17d20bad5b946ed3

    • SHA512

      1abe1c0938a179650caf8ce60b32174407ca6566975e24b79c2e427c024d2dfc90765c9c5c27a297dfabd755d3df5af9349c335bc792558636850ea5f6a4eb96

    • SSDEEP

      98304:jDL2yWQlwHwPmiE+E+JIn/+W3i7ptP4jAJggEYKTud10ZuBhRbGa9AbY5:SfQlrmi++JC/y7p1qAph0+RbGa9Ac5

    Score
    7/10
    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

    • Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Matrix

Tasks