Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
4eac41abf1eb4555594eab19567baf81_JaffaCakes118
-
Size
673KB
-
Sample
240517-gjk7gacb71
-
MD5
4eac41abf1eb4555594eab19567baf81
-
SHA1
692de4ea8f7dfd81f089f699a6e54822d261c396
-
SHA256
2362bdcb7103c00424fed00c4d95ecd8a5a777754cfb7dbffa06151ef40cf971
-
SHA512
fe85e1c19ab962d8a81b8cc844b050747ba2efa1fb55476326dd9efefe75c431e6f7b55cc6e8fa0915c275ca747bbf5e8ef25e7ccf99a925b4a44a455547bb71
-
SSDEEP
12288:q5v8XvqRrYvhPi7cTqoRKHgGYcveMTv7AqeLDDuu9YMVFca6QF:Cv8XCH7uqHgGY4e0QDD9YMV2a6QF
Static task
static1
Behavioral task
behavioral1
Sample
4eac41abf1eb4555594eab19567baf81_JaffaCakes118.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
4eac41abf1eb4555594eab19567baf81_JaffaCakes118.exe
Resource
win10v2004-20240426-en
Malware Config
Targets
-
-
Target
4eac41abf1eb4555594eab19567baf81_JaffaCakes118
-
Size
673KB
-
MD5
4eac41abf1eb4555594eab19567baf81
-
SHA1
692de4ea8f7dfd81f089f699a6e54822d261c396
-
SHA256
2362bdcb7103c00424fed00c4d95ecd8a5a777754cfb7dbffa06151ef40cf971
-
SHA512
fe85e1c19ab962d8a81b8cc844b050747ba2efa1fb55476326dd9efefe75c431e6f7b55cc6e8fa0915c275ca747bbf5e8ef25e7ccf99a925b4a44a455547bb71
-
SSDEEP
12288:q5v8XvqRrYvhPi7cTqoRKHgGYcveMTv7AqeLDDuu9YMVFca6QF:Cv8XCH7uqHgGY4e0QDD9YMV2a6QF
Score9/10-
Identifies VirtualBox via ACPI registry values (likely anti-VM)
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Drops desktop.ini file(s)
-