Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    8f930c6bc778669d17b37d3b9ac4af21_JaffaCakes118

  • Size

    514KB

  • Sample

    240602-1wcweagd9s

  • MD5

    8f930c6bc778669d17b37d3b9ac4af21

  • SHA1

    df528c1df0e7f06cb5859d3b2024a25e095fe90c

  • SHA256

    be0f1472b8a61fe81c5191d1f403cafb7a24199680f23a69bc2c2dc8d7143cc3

  • SHA512

    b80e2d34a92b2aeac067c844d3426089632f88da7a9eb92304c9f416761992f38a2a9a594476aa3b19f8aabb74b5a3f95d2b58d0a7662b368004758923a52be3

  • SSDEEP

    6144:UZfec9EbXDk6RkdKFHrG1VVE+ImmULe/0Y23BUtRWoSK/UOPSe570Szp3y:UZWtI6RkILu7i0ERctOB0H

Malware Config

Targets

    • Target

      8f930c6bc778669d17b37d3b9ac4af21_JaffaCakes118

    • Size

      514KB

    • MD5

      8f930c6bc778669d17b37d3b9ac4af21

    • SHA1

      df528c1df0e7f06cb5859d3b2024a25e095fe90c

    • SHA256

      be0f1472b8a61fe81c5191d1f403cafb7a24199680f23a69bc2c2dc8d7143cc3

    • SHA512

      b80e2d34a92b2aeac067c844d3426089632f88da7a9eb92304c9f416761992f38a2a9a594476aa3b19f8aabb74b5a3f95d2b58d0a7662b368004758923a52be3

    • SSDEEP

      6144:UZfec9EbXDk6RkdKFHrG1VVE+ImmULe/0Y23BUtRWoSK/UOPSe570Szp3y:UZWtI6RkILu7i0ERctOB0H

    • Disables service(s)

    • Modifies visibility of file extensions in Explorer

    • Blocks application from running via registry modification

      Adds application to list of disallowed applications.

    • Sets file execution options in registry

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks