Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    77adef81b91f5f3a660e5e4ad78db29b_JaffaCakes118

  • Size

    5.0MB

  • Sample

    240527-ddx3aseg26

  • MD5

    77adef81b91f5f3a660e5e4ad78db29b

  • SHA1

    4cf6f088fa42c825193eab2987d6252ac9fd0e69

  • SHA256

    f9c019ff5ea8cc534b8d9500e75bfd4e05f477222bbf2e7ece8b8ff24c4a4870

  • SHA512

    d5d4a66ba8d2bbe3ae0d4297ebbf8d98ee89a12ce1082da964cbf36eced56ff269c5c2c832bac04ef645d39abee63f68289ed3f0ac534e2da8ea9e4820989d8c

  • SSDEEP

    98304:+DqPoBhz1aRlSUDk36SAEdhvxWa9P593R8yAVp2H:+DqPe1Clxk3ZAEUadzR8yc4H

Malware Config

Targets

    • Target

      77adef81b91f5f3a660e5e4ad78db29b_JaffaCakes118

    • Size

      5.0MB

    • MD5

      77adef81b91f5f3a660e5e4ad78db29b

    • SHA1

      4cf6f088fa42c825193eab2987d6252ac9fd0e69

    • SHA256

      f9c019ff5ea8cc534b8d9500e75bfd4e05f477222bbf2e7ece8b8ff24c4a4870

    • SHA512

      d5d4a66ba8d2bbe3ae0d4297ebbf8d98ee89a12ce1082da964cbf36eced56ff269c5c2c832bac04ef645d39abee63f68289ed3f0ac534e2da8ea9e4820989d8c

    • SSDEEP

      98304:+DqPoBhz1aRlSUDk36SAEdhvxWa9P593R8yAVp2H:+DqPe1Clxk3ZAEUadzR8yc4H

    • Wannacry

      WannaCry is a ransomware cryptoworm.

    • Contacts a large (3231) amount of remote hosts

      This may indicate a network scan to discover remotely running services.

    • Executes dropped EXE

    • Creates a large amount of network flows

      This may indicate a network scan to discover remotely running services.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks