Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    11f26d802380bea1cda500bf3712fe3f_JaffaCakes118

  • Size

    21KB

  • Sample

    240626-ph9gnsthjc

  • MD5

    11f26d802380bea1cda500bf3712fe3f

  • SHA1

    883c24d544d542ef3edc01140c40cf47d1bea89b

  • SHA256

    7c1a1a8d39ef96918e9d2b1b39d1e503a222e36b2c7528979b6cbc10c3252202

  • SHA512

    7f4757373e9c89f2c380303bb9ebf847dc9d7a03a0eba27bbb81760f7ee07c8b4ffb06d9b278cfe690b63aea93b22fd9a551a42779c04a60c6be97d128201949

  • SSDEEP

    384:QYyGv7eoIha9A2P2xV/ASgIextv4fJkIAXJEz2eh3Yvs5Jt3Mpp+r/ZS3gUSM:QYy8Ga9dPSpdusxcZq2eR/8g/Ad

Malware Config

Targets

    • Target

      11f26d802380bea1cda500bf3712fe3f_JaffaCakes118

    • Size

      21KB

    • MD5

      11f26d802380bea1cda500bf3712fe3f

    • SHA1

      883c24d544d542ef3edc01140c40cf47d1bea89b

    • SHA256

      7c1a1a8d39ef96918e9d2b1b39d1e503a222e36b2c7528979b6cbc10c3252202

    • SHA512

      7f4757373e9c89f2c380303bb9ebf847dc9d7a03a0eba27bbb81760f7ee07c8b4ffb06d9b278cfe690b63aea93b22fd9a551a42779c04a60c6be97d128201949

    • SSDEEP

      384:QYyGv7eoIha9A2P2xV/ASgIextv4fJkIAXJEz2eh3Yvs5Jt3Mpp+r/ZS3gUSM:QYy8Ga9dPSpdusxcZq2eR/8g/Ad

    • Modifies firewall policy service

    • Impair Defenses: Safe Mode Boot

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks