Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    16451a2b747c2c7f9715cba0044b830b_JaffaCakes118

  • Size

    512KB

  • Sample

    240627-rdneraxbln

  • MD5

    16451a2b747c2c7f9715cba0044b830b

  • SHA1

    7d29fe89dbed107b25cb4ba6116900ca10958bcb

  • SHA256

    91ba0b40a538b93fa0b959c98f21964c20f460d7b5dfbed8613442e6b84a4266

  • SHA512

    8085d4cfa0ac8d909fe1700e30b584eb92985915d69aa23feea2f184ff84ca8f19b3fd3ce7f28c33dab3ddf368faada3bfcb24c460d5200faffda0ddbb5831d3

  • SSDEEP

    6144:AHsRRS2YjYfQCwRCpBf/PbPpORerE61yxcRMz+x0V6b:E2YjvCUOfnbh8enX8az

Malware Config

Targets

    • Target

      16451a2b747c2c7f9715cba0044b830b_JaffaCakes118

    • Size

      512KB

    • MD5

      16451a2b747c2c7f9715cba0044b830b

    • SHA1

      7d29fe89dbed107b25cb4ba6116900ca10958bcb

    • SHA256

      91ba0b40a538b93fa0b959c98f21964c20f460d7b5dfbed8613442e6b84a4266

    • SHA512

      8085d4cfa0ac8d909fe1700e30b584eb92985915d69aa23feea2f184ff84ca8f19b3fd3ce7f28c33dab3ddf368faada3bfcb24c460d5200faffda0ddbb5831d3

    • SSDEEP

      6144:AHsRRS2YjYfQCwRCpBf/PbPpORerE61yxcRMz+x0V6b:E2YjvCUOfnbh8enX8az

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks