Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    022dd78a60faa8db5aca17c276d2852b_JaffaCakes118

  • Size

    72KB

  • Sample

    240620-dbsd2ayhlj

  • MD5

    022dd78a60faa8db5aca17c276d2852b

  • SHA1

    65cdbeb615a67e57473f4960dcbba0cff1e1a4e8

  • SHA256

    3d86a8e35728cf220e1f38b16beddaae3a1b3437d5b6d4c07a7915dba0f70c53

  • SHA512

    5b0112ec24b13e481f2d6ec105a6c887d61140d188465e9b3121a4d318f93aa428328b1a11e1a10115a5047280a26a1c000132a5f6454a2331253d0c67b00065

  • SSDEEP

    1536:dmtbHP+bGhiyNmbh18ukBDdFvXBSYK1g0x8zGtuHOidQMMO4fIKV/MJoI8r:dmt6K4E0TkBx3+wi4HOidQShKTXr

Score
10/10

Malware Config

Targets

    • Target

      022dd78a60faa8db5aca17c276d2852b_JaffaCakes118

    • Size

      72KB

    • MD5

      022dd78a60faa8db5aca17c276d2852b

    • SHA1

      65cdbeb615a67e57473f4960dcbba0cff1e1a4e8

    • SHA256

      3d86a8e35728cf220e1f38b16beddaae3a1b3437d5b6d4c07a7915dba0f70c53

    • SHA512

      5b0112ec24b13e481f2d6ec105a6c887d61140d188465e9b3121a4d318f93aa428328b1a11e1a10115a5047280a26a1c000132a5f6454a2331253d0c67b00065

    • SSDEEP

      1536:dmtbHP+bGhiyNmbh18ukBDdFvXBSYK1g0x8zGtuHOidQMMO4fIKV/MJoI8r:dmt6K4E0TkBx3+wi4HOidQShKTXr

    Score
    10/10
    • Adds autorun key to be loaded by Explorer.exe on startup

    • Contacts a large (502) amount of remote hosts

      This may indicate a network scan to discover remotely running services.

    • Adds Run key to start application

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks