Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
05b32f60f010cfbb382be1e0cfe76902_JaffaCakes118
-
Size
436KB
-
Sample
240624-ayv7na1arf
-
MD5
05b32f60f010cfbb382be1e0cfe76902
-
SHA1
45b5c2c71ddd2b525151c4b105baa8429e6d3b73
-
SHA256
cd8c01a3ba706d486f66da5bf7a9372328547d0800d76bebb0effbe79fd6b0c6
-
SHA512
8fb301d6bba8b83eec458c565732f1511c323cd985d495c85a44fef051c5716c2cba52eddfb923b60ffad2f2b55b4db045b89d62bc6cab15193aff0e2aeb7851
-
SSDEEP
3072:21bNhC7NXnSxEBo3GGtPFoncW4DkM4BG1KR1S8i+nwUqeq19MTSkUZ3TAusxT0b1:21qhaGGJTkM4BS94SFaut18XbpH
Static task
static1
Behavioral task
behavioral1
Sample
05b32f60f010cfbb382be1e0cfe76902_JaffaCakes118.exe
Resource
win7-20240611-en
Behavioral task
behavioral2
Sample
05b32f60f010cfbb382be1e0cfe76902_JaffaCakes118.exe
Resource
win10v2004-20240611-en
Malware Config
Targets
-
-
Target
05b32f60f010cfbb382be1e0cfe76902_JaffaCakes118
-
Size
436KB
-
MD5
05b32f60f010cfbb382be1e0cfe76902
-
SHA1
45b5c2c71ddd2b525151c4b105baa8429e6d3b73
-
SHA256
cd8c01a3ba706d486f66da5bf7a9372328547d0800d76bebb0effbe79fd6b0c6
-
SHA512
8fb301d6bba8b83eec458c565732f1511c323cd985d495c85a44fef051c5716c2cba52eddfb923b60ffad2f2b55b4db045b89d62bc6cab15193aff0e2aeb7851
-
SSDEEP
3072:21bNhC7NXnSxEBo3GGtPFoncW4DkM4BG1KR1S8i+nwUqeq19MTSkUZ3TAusxT0b1:21qhaGGJTkM4BS94SFaut18XbpH
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Maps connected drives based on registry
Disk information is often read in order to detect sandboxing environments.
-