Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
07f94283cdb2722b5b9d8178d0551a2b_JaffaCakes118
-
Size
2.5MB
-
Sample
240624-mjpsjs1dlk
-
MD5
07f94283cdb2722b5b9d8178d0551a2b
-
SHA1
06a143293f2cdc37cece267a9ea173f1be8800c1
-
SHA256
982f37ac26da3251197f1eb24560694ea0a729f25ee3a51226217e022aba3a11
-
SHA512
85f1b02768ee54efa66efd5abf0981ad9a5bab802564aeb1c7acfd324ca6b62fc0f7726fe923f48e59fe92cf1fecc06e78026e682984327a9e081627a8c4e9a9
-
SSDEEP
49152:hZWpGFnd2gi+faE2Ll0q35Pk50hMpKIr65qnaThu8mGU3lFxKutnMRQxW:hZWrgALX35PMbfadBfSxK5B
Static task
static1
Behavioral task
behavioral1
Sample
07f94283cdb2722b5b9d8178d0551a2b_JaffaCakes118.exe
Resource
win7-20240220-en
Behavioral task
behavioral2
Sample
07f94283cdb2722b5b9d8178d0551a2b_JaffaCakes118.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
07f94283cdb2722b5b9d8178d0551a2b_JaffaCakes118
-
Size
2.5MB
-
MD5
07f94283cdb2722b5b9d8178d0551a2b
-
SHA1
06a143293f2cdc37cece267a9ea173f1be8800c1
-
SHA256
982f37ac26da3251197f1eb24560694ea0a729f25ee3a51226217e022aba3a11
-
SHA512
85f1b02768ee54efa66efd5abf0981ad9a5bab802564aeb1c7acfd324ca6b62fc0f7726fe923f48e59fe92cf1fecc06e78026e682984327a9e081627a8c4e9a9
-
SSDEEP
49152:hZWpGFnd2gi+faE2Ll0q35Pk50hMpKIr65qnaThu8mGU3lFxKutnMRQxW:hZWrgALX35PMbfadBfSxK5B
-
Checks BIOS information in registry
BIOS information is often read in order to detect sandboxing environments.
-
Identifies Wine through registry keys
Wine is a compatibility layer capable of running Windows applications, which can be used as sandboxing environment.
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-