Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    b248cf7d5d9ed5f08e21c586fb5a6474_JaffaCakes118

  • Size

    763KB

  • Sample

    240616-hy51vstgrc

  • MD5

    b248cf7d5d9ed5f08e21c586fb5a6474

  • SHA1

    6c1ec7341c509460885ee8ed191c0987d0659e90

  • SHA256

    857ca3822b6e68bb4cb9ffc0b58a778b2ae08b0435c69865f3059a9069a4f122

  • SHA512

    e674fe22e97da41ee64ee1737e196c39596eba130f98397f0dd8c95c5e7a5ee9a0d71e5147f9f3911d266d60ead9e7641bd61f8b0adff28f0220ab71bb15bcd5

  • SSDEEP

    12288:O3iLw+nwPAX0vM7V5qWCsWdRcVRWgcqaIRmyexPMJqqFqqFqqJ5:OkWok0XWdRcVMgcqacyMJqMqMqk

Score
9/10

Malware Config

Targets

    • Target

      b248cf7d5d9ed5f08e21c586fb5a6474_JaffaCakes118

    • Size

      763KB

    • MD5

      b248cf7d5d9ed5f08e21c586fb5a6474

    • SHA1

      6c1ec7341c509460885ee8ed191c0987d0659e90

    • SHA256

      857ca3822b6e68bb4cb9ffc0b58a778b2ae08b0435c69865f3059a9069a4f122

    • SHA512

      e674fe22e97da41ee64ee1737e196c39596eba130f98397f0dd8c95c5e7a5ee9a0d71e5147f9f3911d266d60ead9e7641bd61f8b0adff28f0220ab71bb15bcd5

    • SSDEEP

      12288:O3iLw+nwPAX0vM7V5qWCsWdRcVRWgcqaIRmyexPMJqqFqqFqqJ5:OkWok0XWdRcVMgcqacyMJqMqMqk

    Score
    9/10
    • Checks for common network interception software

      Looks in the registry for tools like Wireshark or Fiddler commonly used to analyze network activity.

    • Enumerates VirtualBox registry keys

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks