Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    03c2731984c9baf48b28f3df4814e4a4_JaffaCakes118

  • Size

    2.3MB

  • Sample

    240623-25ayva1ajp

  • MD5

    03c2731984c9baf48b28f3df4814e4a4

  • SHA1

    58cb1ab597ccdc584b8aa0b6a8a950ef7f8be580

  • SHA256

    938e2be7f11645ffc60f7ed1d13680c77eda2c2bf5c18a2183d1e529e6f561b4

  • SHA512

    370e36bf91a54509cc8ac514b87b0abeb740765ffd5e6a62dada5b86da5827d72ad487cf81fab0131a75b223dadd84f982f27d41b77791faec0bc2e5b81775b9

  • SSDEEP

    49152:bKpEKZv7bdbfZ097QDlBSEdYmYUON62BQewt6u1dEHYqnEDv:lKZv/dbfZHDlBljYeewQvav

Malware Config

Targets

    • Target

      03c2731984c9baf48b28f3df4814e4a4_JaffaCakes118

    • Size

      2.3MB

    • MD5

      03c2731984c9baf48b28f3df4814e4a4

    • SHA1

      58cb1ab597ccdc584b8aa0b6a8a950ef7f8be580

    • SHA256

      938e2be7f11645ffc60f7ed1d13680c77eda2c2bf5c18a2183d1e529e6f561b4

    • SHA512

      370e36bf91a54509cc8ac514b87b0abeb740765ffd5e6a62dada5b86da5827d72ad487cf81fab0131a75b223dadd84f982f27d41b77791faec0bc2e5b81775b9

    • SSDEEP

      49152:bKpEKZv7bdbfZ097QDlBSEdYmYUON62BQewt6u1dEHYqnEDv:lKZv/dbfZHDlBljYeewQvav

    Score
    3/10
    • Target

      Ares.exe

    • Size

      981KB

    • MD5

      d1ea7694103f5d5cf11148f9b3864c45

    • SHA1

      fc31db522b3242c44ce6538f7639fb55904027bc

    • SHA256

      591e0e37e7f3831923063008de198e2e59bdc1afd568215d778285cdd0148ce3

    • SHA512

      40d6b59ae2a55d242e701b5e9b61b9c609445005863b99780e1776f9c5f15c7a87afe331661963ab12b642a7909e750b7594329ee75145ef1a81fa1ff146f01f

    • SSDEEP

      24576:R5LRogOKWtXGIaC0zjFStLFclyRafEnT8pyWQsR7:RzbV2GIszjsBzHTqZ

    • Target

      AsyncEx.ax

    • Size

      196KB

    • MD5

      c250246a8020efc9d905e32aea98d8a4

    • SHA1

      bd82927d03992a4d5ab390c21249ec150270984c

    • SHA256

      46ce1a2667580265807eb9a7576303ecf02defb4cbb93ecc9ca5825ada267cf0

    • SHA512

      fc4979d766e542293a92ec520ebeb2ca48999b28d6731faaad2297e33dff701f351d6782d7c374d3aad8e10040b240573a4a09641610384271531a36a5130991

    • SSDEEP

      6144:fNBDDkAa1rlGC6sxTC9OCybJuyQqk6P8hZm:fLkAaV04dCwCybJu1OPw

    Score
    1/10
    • Target

      MP3Source.ax

    • Size

      60KB

    • MD5

      14fda53fbef501023ac193544cfcc9d9

    • SHA1

      dedf954a0e444022b77d085b731c7146804d78d5

    • SHA256

      f57a5122275ddc67f56d45608fb3b1c41a25b10899bd1e46bb9f04f02f7fc424

    • SHA512

      5bea4300b522e290cb0499944529921658c0d9f39fc4e2e2fa0ac31c6410b9834d430e5ce8f4afd1e20bc7cf16ec59460dcdb4bed7b770656a9bd7698c718b7f

    • SSDEEP

      1536:nV3d1U+bcXzRh9p8KPLrzmipy7RS1dw01xk:nJHbcXzRh8KPrmh1Sbw01O

    Score
    7/10
    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Target

      Uninstall.exe

    • Size

      61KB

    • MD5

      81b6cd95eacc91c3502779b1dd82b794

    • SHA1

      a0b5b12ed0e2d9a6bc7706c0138820b6c8eed4bb

    • SHA256

      b5437d283a259e19afbdf7484bf84d645829030d9248ded1b048933bdcc0e8b3

    • SHA512

      3e21328831226c17c45f53807a61cae2f2cbe66dc9a9f432ab1484a00672769a6bc883e3c838d9bf31247533e66ff58245aab08bea86ea9a79fcc7c99196be1b

    • SSDEEP

      768:obGBkj++ARXzxc2FdZ6IOw7UkfSy0D3DwdFkqsWkJfOQc142FtWwSICP8nn3gYRL:GEkjY1zy214Qay0DGkJmQcREYRNMG

    Score
    7/10
    • Executes dropped EXE

    • Loads dropped DLL

    • Target

      bass.dll

    • Size

      93KB

    • MD5

      38473d7a84ab44517dec3d9327764cc9

    • SHA1

      3603232bd6b557bf6b3a8b10a8a274162b3e0d7f

    • SHA256

      b4567acb45f3329ba6931c514a0df01386f6f89521cf228735111cea336685c6

    • SHA512

      a22a534ed288d1a2abbed36028586f1ab78f649fadf05aaf81d773614e033a8b6c61855349dac0fa156e21ccfc8b9e2f199e55e9f63adca5f3506d311288bee1

    • SSDEEP

      1536:6PZtcJMOPJkKmCyFomUDmAOLiRGQsgJix3BO5Rp9Wls9artatTNqQ6kjjrTysLRh:m+JtPJdiZft+RG/M3RpKTrQtRqBOrTyk

    Score
    1/10
    • Target

      chatServer.exe

    • Size

      389KB

    • MD5

      7d57faae19135dabb22b41b304707096

    • SHA1

      24c00c7474f9f810c76729924fc13dcf8b4a662c

    • SHA256

      3a81371f5c20646b50dbd4657220cdda5f09a5aa01e37ccc6241178630e2cb95

    • SHA512

      eb44c1fef2a89fb569ea54851581bdfe6683855f58ff6bf12971de69080826bdebe8e63dead5c43513018c884ae89ea73438e1b6a273fd7be0e7f575966d0fe8

    • SSDEEP

      6144:UasVtfLzfPlsca60fNATveXJp0NUOtGsI5nKCLpGz1XKRp02:MtHlk6INAuT0Ntcj5LQzlKRm2

    Score
    1/10
    • Target

      data/Homepage.url

    • Size

      249B

    • MD5

      450d1c4cd8852d5ffa7f922f6c7cbaa7

    • SHA1

      fe2e5a5447592fd2349fc417584f9ac11795c613

    • SHA256

      b86da025026b626f63cb2d32608c1b905b59496e8c2b30b87eed1e2eaf0eb0b8

    • SHA512

      ca6d51664b9dbcfdc4c7cbf0dcd9278b116958477b3e42046925ecb2630ac897ec52274019bb84b630fd0cfc4684ea0cfbb1bed53ce02db08282054d128a5560

    Score
    6/10
    • Target

      libfaad2.dll

    • Size

      169KB

    • MD5

      fd5abedf547602eaa107ddbeba50cdc7

    • SHA1

      7adbd9cb65605eb3e43afc4c93a2adc025f36342

    • SHA256

      e1fdc49b2a3f23fac94e1a1978f226c8cf7d4d7ca0297745a6d543ab1d53a471

    • SHA512

      bcd1a7069d8728ef5417d23f105963eaadf3ead07ca59bd2d281bdeae559fcef923865d0b26a500a401d290cd8a527dc9c35ebe0033109ced99138e4d0d87417

    • SSDEEP

      3072:4q0lyEEbqWiYKTPgeRiLiXzox75a+yYscJfDQNr4BfD4yrz:GlyEEbd8DgeYi+5HJfOMBfcyrz

    Score
    3/10

MITRE ATT&CK Enterprise v15

Tasks