Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    4b07b2e639fbe94dc5f92a66a8e5338f_JaffaCakes118

  • Size

    853KB

  • Sample

    240516-pfvwhaca6s

  • MD5

    4b07b2e639fbe94dc5f92a66a8e5338f

  • SHA1

    d229900f5dbdd2293d7b3e9810f46baa69618816

  • SHA256

    210421ff6f48c1aaa7b94bbe410a07d4494859e5dac90bea7276358200cbf020

  • SHA512

    57635d1a9268af8f8a9a69b79a25ba2c5d12f5bb2b599da0cbc1e49376e2e4ee8327806262bf2baa350b938fb3f31fcc1cc43896ee27d7ad32f035457eb9520e

  • SSDEEP

    24576:1Yq2/9nnr5cDNsOQfKJL9ki1arPvi/cjaBYfv:mqaxyDC2JmSoPvikO8

Score
7/10

Malware Config

Targets

    • Target

      4b07b2e639fbe94dc5f92a66a8e5338f_JaffaCakes118

    • Size

      853KB

    • MD5

      4b07b2e639fbe94dc5f92a66a8e5338f

    • SHA1

      d229900f5dbdd2293d7b3e9810f46baa69618816

    • SHA256

      210421ff6f48c1aaa7b94bbe410a07d4494859e5dac90bea7276358200cbf020

    • SHA512

      57635d1a9268af8f8a9a69b79a25ba2c5d12f5bb2b599da0cbc1e49376e2e4ee8327806262bf2baa350b938fb3f31fcc1cc43896ee27d7ad32f035457eb9520e

    • SSDEEP

      24576:1Yq2/9nnr5cDNsOQfKJL9ki1arPvi/cjaBYfv:mqaxyDC2JmSoPvikO8

    Score
    7/10
    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • Maps connected drives based on registry

      Disk information is often read in order to detect sandboxing environments.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks