Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
0e504322cbafed7020b8b90ced3a1b92_JaffaCakes118
-
Size
100KB
-
Sample
240625-q6nesatdqc
-
MD5
0e504322cbafed7020b8b90ced3a1b92
-
SHA1
643fe17b177f1b3f63eb12a9764464515ae134ed
-
SHA256
8a758538bd8abb6c0cf8cae43066671b0e9a520d05ebaf0bee36dafc1b645d50
-
SHA512
d88d3b611f5a1f196b36fd613960ad284760b0d9c3d537a79d9969afe3fc74c27019971ecb3f6d69a65d452342569e99e174967fd2798c95320cf97133d26b74
-
SSDEEP
1536:WECmrm5IqHETVYHHDimXbqNO5CZXolJMg0Yl5Lgo4zHYRIA:Wlmrm2qHeSHLbleXoJx0YPLgo47Y
Static task
static1
Behavioral task
behavioral1
Sample
0e504322cbafed7020b8b90ced3a1b92_JaffaCakes118.exe
Resource
win7-20240508-en
Behavioral task
behavioral2
Sample
0e504322cbafed7020b8b90ced3a1b92_JaffaCakes118.exe
Resource
win10v2004-20240508-en
Malware Config
Targets
-
-
Target
0e504322cbafed7020b8b90ced3a1b92_JaffaCakes118
-
Size
100KB
-
MD5
0e504322cbafed7020b8b90ced3a1b92
-
SHA1
643fe17b177f1b3f63eb12a9764464515ae134ed
-
SHA256
8a758538bd8abb6c0cf8cae43066671b0e9a520d05ebaf0bee36dafc1b645d50
-
SHA512
d88d3b611f5a1f196b36fd613960ad284760b0d9c3d537a79d9969afe3fc74c27019971ecb3f6d69a65d452342569e99e174967fd2798c95320cf97133d26b74
-
SSDEEP
1536:WECmrm5IqHETVYHHDimXbqNO5CZXolJMg0Yl5Lgo4zHYRIA:Wlmrm2qHeSHLbleXoJx0YPLgo47Y
Score8/10-
Event Triggered Execution: AppInit DLLs
Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.
-
Drops file in System32 directory
-