Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    3bc3a65bbf1a6905afeb256146d69969_JaffaCakes118

  • Size

    1.6MB

  • Sample

    240512-yexhdagb52

  • MD5

    3bc3a65bbf1a6905afeb256146d69969

  • SHA1

    62083da37c7e5e02050e5c913aa43d61b2d42b38

  • SHA256

    15062a87c5b7c0b847a21e6e0dad5b2ec06a95cf02780056d2b175f001dfd701

  • SHA512

    923cd3b35972b220676cf494ee7f02d2af74fbe3624b38a8f6207d9c98b274bd85d204d990482c81daa138067dca0ccce41aa74a29e4e351e0f21e615cdcccbc

  • SSDEEP

    49152:WXql1PTpMhNxm+BZcb7K/dbzptGoZS1pqjSmRwLJF/:WXq/TKi/K/dSn1puOB

Malware Config

Targets

    • Target

      3bc3a65bbf1a6905afeb256146d69969_JaffaCakes118

    • Size

      1.6MB

    • MD5

      3bc3a65bbf1a6905afeb256146d69969

    • SHA1

      62083da37c7e5e02050e5c913aa43d61b2d42b38

    • SHA256

      15062a87c5b7c0b847a21e6e0dad5b2ec06a95cf02780056d2b175f001dfd701

    • SHA512

      923cd3b35972b220676cf494ee7f02d2af74fbe3624b38a8f6207d9c98b274bd85d204d990482c81daa138067dca0ccce41aa74a29e4e351e0f21e615cdcccbc

    • SSDEEP

      49152:WXql1PTpMhNxm+BZcb7K/dbzptGoZS1pqjSmRwLJF/:WXq/TKi/K/dSn1puOB

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Registers COM server for autorun

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

MITRE ATT&CK Enterprise v15

Tasks