Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
06df0980fff3b950dcf02359b7162ee5_JaffaCakes118
-
Size
4.9MB
-
Sample
240620-rxstkssdrd
-
MD5
06df0980fff3b950dcf02359b7162ee5
-
SHA1
d2a9de6ae30f40243d941fe747da2f20790b6e62
-
SHA256
0590894e2ef5e46ca7044fec6df83d362021c7a0798aed4aa38baa6e2fe066ed
-
SHA512
46f815717388a4bd273dcae7df9577a37b8089b8bc2a17b087ea7418d24af2a07722072ffbe2374f6a0697780fddf9e5fb360302b1452143b87aba761681f4e8
-
SSDEEP
98304:3Mtb7/SrJkyTl9KMkEfj9gMWRW1xpF27ZOidJf9a52DLsz8RG3slJu+NEOt:QurJR9/JgtWjpF2VtdJ852BceTNvt
Malware Config
Targets
-
-
Target
06df0980fff3b950dcf02359b7162ee5_JaffaCakes118
-
Size
4.9MB
-
MD5
06df0980fff3b950dcf02359b7162ee5
-
SHA1
d2a9de6ae30f40243d941fe747da2f20790b6e62
-
SHA256
0590894e2ef5e46ca7044fec6df83d362021c7a0798aed4aa38baa6e2fe066ed
-
SHA512
46f815717388a4bd273dcae7df9577a37b8089b8bc2a17b087ea7418d24af2a07722072ffbe2374f6a0697780fddf9e5fb360302b1452143b87aba761681f4e8
-
SSDEEP
98304:3Mtb7/SrJkyTl9KMkEfj9gMWRW1xpF27ZOidJf9a52DLsz8RG3slJu+NEOt:QurJR9/JgtWjpF2VtdJ852BceTNvt
Score8/10-
Stops running service(s)
-
Uses Session Manager for persistence
Creates Session Manager registry key to run executable early in system boot.
-
Adds Run key to start application
-
Drops file in System32 directory
-
MITRE ATT&CK Enterprise v15
Execution
Scheduled Task/Job
1Scheduled Task
1System Services
1Service Execution
1Persistence
Boot or Logon Autostart Execution
2Registry Run Keys / Startup Folder
2Create or Modify System Process
1Windows Service
1Scheduled Task/Job
1Scheduled Task
1