Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    16006e486b7a3add1a1fd8cf2c190737_JaffaCakes118

  • Size

    313KB

  • Sample

    240627-pmg8zstdqr

  • MD5

    16006e486b7a3add1a1fd8cf2c190737

  • SHA1

    2a737c5d3210393e242d4d8a3b1fad28b28cf5bf

  • SHA256

    64b6232aa8e9f455bfe9255665fb4b050caf35d7af3cac63484f8a0c972897e1

  • SHA512

    bead3b90ea736d526574a322bf1486c0926c4310c02d28032871d98d7e697e85a5abfe4f2720702712938702f57369d194db9b1d3814759b2030a222801da301

  • SSDEEP

    6144:91OgDPdkBAFZWjadD4s0E+H1STjf8j2nVAGgZJ9Cu0OyNsLEeGLT6pdrF:91OgLdauc1mf8K1gZJ9WOyNsLEeEwr

Malware Config

Targets

    • Target

      16006e486b7a3add1a1fd8cf2c190737_JaffaCakes118

    • Size

      313KB

    • MD5

      16006e486b7a3add1a1fd8cf2c190737

    • SHA1

      2a737c5d3210393e242d4d8a3b1fad28b28cf5bf

    • SHA256

      64b6232aa8e9f455bfe9255665fb4b050caf35d7af3cac63484f8a0c972897e1

    • SHA512

      bead3b90ea736d526574a322bf1486c0926c4310c02d28032871d98d7e697e85a5abfe4f2720702712938702f57369d194db9b1d3814759b2030a222801da301

    • SSDEEP

      6144:91OgDPdkBAFZWjadD4s0E+H1STjf8j2nVAGgZJ9Cu0OyNsLEeGLT6pdrF:91OgLdauc1mf8K1gZJ9WOyNsLEeEwr

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

MITRE ATT&CK Enterprise v15

Tasks