Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    182860c0c418baa8f0d94b68459ae384_JaffaCakes118

  • Size

    268KB

  • Sample

    240628-a2bbna1fld

  • MD5

    182860c0c418baa8f0d94b68459ae384

  • SHA1

    ada260ac8ce34358527c05e91c1029b7f55aa737

  • SHA256

    651dbcca5436b159a5fb1fcff4f769a91280e194bd091b8bb6e284db94858814

  • SHA512

    9c64290fd43c8ffc7a720b01b0715b23d924625171216b96855b3b5034b57ace8f9cadb037d2552128eccff1175f03c4d78384d72902ced26182e2f7a5388b84

  • SSDEEP

    6144:amwd6zy40hYcUQ9gVLPxOzHu7HyZpmCFY3QFkp7Vxt:at6zoDqVLwbuzy3Y3fp7F

Score
10/10

Malware Config

Targets

    • Target

      182860c0c418baa8f0d94b68459ae384_JaffaCakes118

    • Size

      268KB

    • MD5

      182860c0c418baa8f0d94b68459ae384

    • SHA1

      ada260ac8ce34358527c05e91c1029b7f55aa737

    • SHA256

      651dbcca5436b159a5fb1fcff4f769a91280e194bd091b8bb6e284db94858814

    • SHA512

      9c64290fd43c8ffc7a720b01b0715b23d924625171216b96855b3b5034b57ace8f9cadb037d2552128eccff1175f03c4d78384d72902ced26182e2f7a5388b84

    • SSDEEP

      6144:amwd6zy40hYcUQ9gVLPxOzHu7HyZpmCFY3QFkp7Vxt:at6zoDqVLwbuzy3Y3fp7F

    Score
    10/10
    • Modifies firewall policy service

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks