Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
8b6dd69af41aa243e9fb12cfbd426735_JaffaCakes118
-
Size
107KB
-
Sample
240601-xkskyace37
-
MD5
8b6dd69af41aa243e9fb12cfbd426735
-
SHA1
99d514ddfbccc6ee576f0a1d8143975972c2777e
-
SHA256
156268ea966642cff53b0d5ece4903fbaebddbcb5e3f446dff27780d30cb5a73
-
SHA512
417367bc202e47b303fb94a872a33dfefe6753716d61f203384b2a966c097af7a3407d18d9eb7708f955a1b3f87293417501dff6c1351207904fa964fdb19551
-
SSDEEP
3072:m46miUV9IWE3e+68oHVR1GcNck0Q0q0bCRiH7aW:m4HvQWEu+6D1j6ksnbCRiH7a
Behavioral task
behavioral1
Sample
8b6dd69af41aa243e9fb12cfbd426735_JaffaCakes118.exe
Resource
win7-20240221-en
Malware Config
Targets
-
-
Target
8b6dd69af41aa243e9fb12cfbd426735_JaffaCakes118
-
Size
107KB
-
MD5
8b6dd69af41aa243e9fb12cfbd426735
-
SHA1
99d514ddfbccc6ee576f0a1d8143975972c2777e
-
SHA256
156268ea966642cff53b0d5ece4903fbaebddbcb5e3f446dff27780d30cb5a73
-
SHA512
417367bc202e47b303fb94a872a33dfefe6753716d61f203384b2a966c097af7a3407d18d9eb7708f955a1b3f87293417501dff6c1351207904fa964fdb19551
-
SSDEEP
3072:m46miUV9IWE3e+68oHVR1GcNck0Q0q0bCRiH7aW:m4HvQWEu+6D1j6ksnbCRiH7a
-
Gh0st RAT payload
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Abuse Elevation Control Mechanism
1Bypass User Account Control
1Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1