Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
079f56ead49c756a3b3252c448b9ffd5_JaffaCakes118
-
Size
826KB
-
Sample
240620-tnmmbaweqd
-
MD5
079f56ead49c756a3b3252c448b9ffd5
-
SHA1
591dc67706272cc3301c19bb96b10d22e6cf5573
-
SHA256
f75b415a68f6d0b292a9f7f2a77bbdb5ca23a78bffac69665a42a7fbe57577e1
-
SHA512
63483b8d3a4325cf7df0d3ab1cff8af1ee7bf891e9f467771ba58441ddcdd27c06898472ada9ccab9d25d9b2a479204a2fde47876484dbace6982eb663c18b92
-
SSDEEP
24576:mKsoFg9ZYBcIZld7XgcTmFZO6mYeVfuS/t04u1:IoFdcm8O/hnF03
Malware Config
Targets
-
-
Target
079f56ead49c756a3b3252c448b9ffd5_JaffaCakes118
-
Size
826KB
-
MD5
079f56ead49c756a3b3252c448b9ffd5
-
SHA1
591dc67706272cc3301c19bb96b10d22e6cf5573
-
SHA256
f75b415a68f6d0b292a9f7f2a77bbdb5ca23a78bffac69665a42a7fbe57577e1
-
SHA512
63483b8d3a4325cf7df0d3ab1cff8af1ee7bf891e9f467771ba58441ddcdd27c06898472ada9ccab9d25d9b2a479204a2fde47876484dbace6982eb663c18b92
-
SSDEEP
24576:mKsoFg9ZYBcIZld7XgcTmFZO6mYeVfuS/t04u1:IoFdcm8O/hnF03
Score8/10-
Drops file in Drivers directory
-
ASPack v2.12-2.42
Detects executables packed with ASPack v2.12-2.42
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-
Drops file in System32 directory
-