Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    0a46a42dde66b029b74c5524c08a02e2_JaffaCakes118

  • Size

    127KB

  • Sample

    240624-xmh5aaxgqc

  • MD5

    0a46a42dde66b029b74c5524c08a02e2

  • SHA1

    5cb0cc9b2da7e417c9a566929b3443f53da2430b

  • SHA256

    85b263f03e965cae1d5660ea8db7808ea8e17bf6c0ab04166c5811a309268943

  • SHA512

    e086669026a60af8585ce0840a79beac9e0a1183fbf5b21072ba2baea57a9fc994ac7a155c638b2320cca389e8d6a2574cc124e7b2d4a28cb0ddfaed3d7b3f39

  • SSDEEP

    3072:y7CaO7x8fC8t52ojM+rKttHkoIIu6kfif20wNA:y7pON8aoQ+wKodjkqfXC

Score
10/10

Malware Config

Targets

    • Target

      0a46a42dde66b029b74c5524c08a02e2_JaffaCakes118

    • Size

      127KB

    • MD5

      0a46a42dde66b029b74c5524c08a02e2

    • SHA1

      5cb0cc9b2da7e417c9a566929b3443f53da2430b

    • SHA256

      85b263f03e965cae1d5660ea8db7808ea8e17bf6c0ab04166c5811a309268943

    • SHA512

      e086669026a60af8585ce0840a79beac9e0a1183fbf5b21072ba2baea57a9fc994ac7a155c638b2320cca389e8d6a2574cc124e7b2d4a28cb0ddfaed3d7b3f39

    • SSDEEP

      3072:y7CaO7x8fC8t52ojM+rKttHkoIIu6kfif20wNA:y7pON8aoQ+wKodjkqfXC

    Score
    10/10
    • Gh0st RAT payload

    • Gh0strat

      Gh0st RAT is a remote access tool (RAT) with its source code public and it has been used by multiple Chinese groups.

    • Deletes itself

    • Loads dropped DLL

MITRE ATT&CK Matrix

Tasks