Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
b2c86088b0cf85f227bf0a531d2b4b87_JaffaCakes118
-
Size
4.7MB
-
Sample
240616-le3m6ssbjq
-
MD5
b2c86088b0cf85f227bf0a531d2b4b87
-
SHA1
45c490f2e1c9c142c84811441fd6e1c0f0495891
-
SHA256
1a76b14f2c7de839bbc9471de9e9502d37774804a800af3ea6f9b283e591f082
-
SHA512
058cdbb6d12418f29269cb515b26095d78cc2d598feb4632422910c6cb10a7fafe707515eb97b002f75869295d1589c67efacf677063a3e47dfdc0ca5e452f96
-
SSDEEP
98304:Ae4d8iEityhkhqloaxeq7jhIXUvPBnnom2LSqLyU:nCnyhkhBaxem1tPBn2uqh
Malware Config
Targets
-
-
Target
b2c86088b0cf85f227bf0a531d2b4b87_JaffaCakes118
-
Size
4.7MB
-
MD5
b2c86088b0cf85f227bf0a531d2b4b87
-
SHA1
45c490f2e1c9c142c84811441fd6e1c0f0495891
-
SHA256
1a76b14f2c7de839bbc9471de9e9502d37774804a800af3ea6f9b283e591f082
-
SHA512
058cdbb6d12418f29269cb515b26095d78cc2d598feb4632422910c6cb10a7fafe707515eb97b002f75869295d1589c67efacf677063a3e47dfdc0ca5e452f96
-
SSDEEP
98304:Ae4d8iEityhkhqloaxeq7jhIXUvPBnnom2LSqLyU:nCnyhkhBaxem1tPBn2uqh
Score7/10-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Maps connected drives based on registry
Disk information is often read in order to detect sandboxing environments.
-
Suspicious use of SetThreadContext
-