Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    18843accc238fc0b7ce7b851ece8a149_JaffaCakes118

  • Size

    1.6MB

  • Sample

    240628-da2w3szdqr

  • MD5

    18843accc238fc0b7ce7b851ece8a149

  • SHA1

    1671f02900fb2dc1f06005480bee68c419da4501

  • SHA256

    d678f1ba76680d2428ef998a58bcbfbe57406b96f3bf978570433cdb30e30b63

  • SHA512

    a1dd4d0b52c5329c0f221a9bd000182d3f92b6dccacffa3ac3caf2e23403106b8508360f2f98db46793c8c4c0ffa8ca5280b676160db08b3c51653732b4d8668

  • SSDEEP

    49152:31R+OAGKRwtsCds9U68eu8SExZGJbPq89o9m8erX:37+o5sCds268evSExwV9o9mh

Malware Config

Targets

    • Target

      18843accc238fc0b7ce7b851ece8a149_JaffaCakes118

    • Size

      1.6MB

    • MD5

      18843accc238fc0b7ce7b851ece8a149

    • SHA1

      1671f02900fb2dc1f06005480bee68c419da4501

    • SHA256

      d678f1ba76680d2428ef998a58bcbfbe57406b96f3bf978570433cdb30e30b63

    • SHA512

      a1dd4d0b52c5329c0f221a9bd000182d3f92b6dccacffa3ac3caf2e23403106b8508360f2f98db46793c8c4c0ffa8ca5280b676160db08b3c51653732b4d8668

    • SSDEEP

      49152:31R+OAGKRwtsCds9U68eu8SExZGJbPq89o9m8erX:37+o5sCds268evSExwV9o9mh

    • ASPack v2.12-2.42

      Detects executables packed with ASPack v2.12-2.42

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

MITRE ATT&CK Enterprise v15

Tasks