Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    0e504322cbafed7020b8b90ced3a1b92_JaffaCakes118

  • Size

    100KB

  • Sample

    240625-q6nesatdqc

  • MD5

    0e504322cbafed7020b8b90ced3a1b92

  • SHA1

    643fe17b177f1b3f63eb12a9764464515ae134ed

  • SHA256

    8a758538bd8abb6c0cf8cae43066671b0e9a520d05ebaf0bee36dafc1b645d50

  • SHA512

    d88d3b611f5a1f196b36fd613960ad284760b0d9c3d537a79d9969afe3fc74c27019971ecb3f6d69a65d452342569e99e174967fd2798c95320cf97133d26b74

  • SSDEEP

    1536:WECmrm5IqHETVYHHDimXbqNO5CZXolJMg0Yl5Lgo4zHYRIA:Wlmrm2qHeSHLbleXoJx0YPLgo47Y

Malware Config

Targets

    • Target

      0e504322cbafed7020b8b90ced3a1b92_JaffaCakes118

    • Size

      100KB

    • MD5

      0e504322cbafed7020b8b90ced3a1b92

    • SHA1

      643fe17b177f1b3f63eb12a9764464515ae134ed

    • SHA256

      8a758538bd8abb6c0cf8cae43066671b0e9a520d05ebaf0bee36dafc1b645d50

    • SHA512

      d88d3b611f5a1f196b36fd613960ad284760b0d9c3d537a79d9969afe3fc74c27019971ecb3f6d69a65d452342569e99e174967fd2798c95320cf97133d26b74

    • SSDEEP

      1536:WECmrm5IqHETVYHHDimXbqNO5CZXolJMg0Yl5Lgo4zHYRIA:Wlmrm2qHeSHLbleXoJx0YPLgo47Y

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks