Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
a430627e5caad6b1165242d9dbc0beb9_JaffaCakes118
-
Size
3.8MB
-
Sample
240613-g6jxxsxcrd
-
MD5
a430627e5caad6b1165242d9dbc0beb9
-
SHA1
0596500e8cea1b04d5ab7d0e175ef0b3d03eca62
-
SHA256
1552540bc5f2e5371b0fea8e1d05d075779cc1a379dc5c7b1de02c60485383b6
-
SHA512
f9bde397051b251aacea0cc5a7f3a5f27f1419a36000745796ff8a6a0171e3b1c4dd4ce297bb975b54b8e8c7d2932ef7bd92a73d4d09a759e7f33fd37dbc9b58
-
SSDEEP
98304:uZuarCtWyX0p+tUFHtrXCDHGkSn8b+vPd2:uZHrzyG+2aDHGkS8CY
Behavioral task
behavioral1
Sample
a430627e5caad6b1165242d9dbc0beb9_JaffaCakes118.exe
Resource
win7-20240419-en
Malware Config
Targets
-
-
Target
a430627e5caad6b1165242d9dbc0beb9_JaffaCakes118
-
Size
3.8MB
-
MD5
a430627e5caad6b1165242d9dbc0beb9
-
SHA1
0596500e8cea1b04d5ab7d0e175ef0b3d03eca62
-
SHA256
1552540bc5f2e5371b0fea8e1d05d075779cc1a379dc5c7b1de02c60485383b6
-
SHA512
f9bde397051b251aacea0cc5a7f3a5f27f1419a36000745796ff8a6a0171e3b1c4dd4ce297bb975b54b8e8c7d2932ef7bd92a73d4d09a759e7f33fd37dbc9b58
-
SSDEEP
98304:uZuarCtWyX0p+tUFHtrXCDHGkSn8b+vPd2:uZHrzyG+2aDHGkS8CY
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Maps connected drives based on registry
Disk information is often read in order to detect sandboxing environments.
-
Suspicious use of SetThreadContext
-