Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    4876328370e8a67f9b6548da5f75264e_JaffaCakes118

  • Size

    683KB

  • Sample

    240515-22nqjaha55

  • MD5

    4876328370e8a67f9b6548da5f75264e

  • SHA1

    524bf2ea95fe7ac2ee72fe32a47e52db93ccb6de

  • SHA256

    14f1c2d894d207152ccdbeecf3ec8047cf63adbdb6c7c53038a742330db24825

  • SHA512

    0e49a95295a3cd6524d3f19d0c9d07a865637e421ab06bc17c21aa428282851ebc324351f9109364e2c31a48677aa157f6cdf64562b49202adff85681447ddde

  • SSDEEP

    12288:apI1ozCEXgFQZ5O4GsLUfia4eiTxMovq6WuPCOlf5+V6T:yI1oz7gFGL/Uqbe6x5Ku6Op5+V6T

Score
9/10

Malware Config

Targets

    • Target

      4876328370e8a67f9b6548da5f75264e_JaffaCakes118

    • Size

      683KB

    • MD5

      4876328370e8a67f9b6548da5f75264e

    • SHA1

      524bf2ea95fe7ac2ee72fe32a47e52db93ccb6de

    • SHA256

      14f1c2d894d207152ccdbeecf3ec8047cf63adbdb6c7c53038a742330db24825

    • SHA512

      0e49a95295a3cd6524d3f19d0c9d07a865637e421ab06bc17c21aa428282851ebc324351f9109364e2c31a48677aa157f6cdf64562b49202adff85681447ddde

    • SSDEEP

      12288:apI1ozCEXgFQZ5O4GsLUfia4eiTxMovq6WuPCOlf5+V6T:yI1oz7gFGL/Uqbe6x5Ku6Op5+V6T

    Score
    9/10
    • Identifies VirtualBox via ACPI registry values (likely anti-VM)

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Drops desktop.ini file(s)

MITRE ATT&CK Enterprise v15

Tasks