Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
0a485d639ede266a07552304669164d2_JaffaCakes118
-
Size
172KB
-
Sample
240624-xnh6nsxhma
-
MD5
0a485d639ede266a07552304669164d2
-
SHA1
fdb893ce06a34568d42ed275f95d31f4c1e53aa5
-
SHA256
580e6dc86cdead3e2c638a1d16474c0c4ccbb04fbbdad6fdb8e9dfbe838ed4e2
-
SHA512
71be7597bc5ad912b93740491bb93c901cbb0549999d5fcd0a358c1a30c258108131f0cb48ac185808e8db78537c6dcb801f129b89d0cd89e3af9f17c269aebf
-
SSDEEP
3072:gcBycVFJkupI+RbgNdA0D90D7fUkUIbNCYsrrlknZGfM4I4s7akKk:gzcVFJkYFedBDiXfBUB7/IaM2
Static task
static1
Behavioral task
behavioral1
Sample
0a485d639ede266a07552304669164d2_JaffaCakes118.exe
Resource
win7-20231129-en
Behavioral task
behavioral2
Sample
0a485d639ede266a07552304669164d2_JaffaCakes118.exe
Resource
win10v2004-20240611-en
Malware Config
Targets
-
-
Target
0a485d639ede266a07552304669164d2_JaffaCakes118
-
Size
172KB
-
MD5
0a485d639ede266a07552304669164d2
-
SHA1
fdb893ce06a34568d42ed275f95d31f4c1e53aa5
-
SHA256
580e6dc86cdead3e2c638a1d16474c0c4ccbb04fbbdad6fdb8e9dfbe838ed4e2
-
SHA512
71be7597bc5ad912b93740491bb93c901cbb0549999d5fcd0a358c1a30c258108131f0cb48ac185808e8db78537c6dcb801f129b89d0cd89e3af9f17c269aebf
-
SSDEEP
3072:gcBycVFJkupI+RbgNdA0D90D7fUkUIbNCYsrrlknZGfM4I4s7akKk:gzcVFJkYFedBDiXfBUB7/IaM2
Score7/10-
Boot or Logon Autostart Execution: Print Processors
Adversaries may abuse print processors to run malicious DLLs during system boot for persistence and/or privilege escalation.
-
Drops file in System32 directory
-