Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    1911b889b02d85cf500e967fed7f2607_JaffaCakes118

  • Size

    448KB

  • Sample

    240628-gygslaxfkk

  • MD5

    1911b889b02d85cf500e967fed7f2607

  • SHA1

    54408994daacea71bff3eedd858c31cfe4d655f5

  • SHA256

    7b2767601f6ebe987a92c166c9d1d0a136cc5d8a12c72ecc89e236dc269a5941

  • SHA512

    b2e1f6d219d9ca8c4fa9f5be3b0ff3215d56158ff1838397cd04d7a4a2c3fbaa1de2e2c2b50bd26d67cf9a9bd83095aae6c3d0708dd9aef4a5747d3dae2ec7e5

  • SSDEEP

    12288:8IBwFnGYEVc2OJjnj25VxOnEjzS1nsxmb:a5EyVJ2FOE3Ed

Malware Config

Targets

    • Target

      1911b889b02d85cf500e967fed7f2607_JaffaCakes118

    • Size

      448KB

    • MD5

      1911b889b02d85cf500e967fed7f2607

    • SHA1

      54408994daacea71bff3eedd858c31cfe4d655f5

    • SHA256

      7b2767601f6ebe987a92c166c9d1d0a136cc5d8a12c72ecc89e236dc269a5941

    • SHA512

      b2e1f6d219d9ca8c4fa9f5be3b0ff3215d56158ff1838397cd04d7a4a2c3fbaa1de2e2c2b50bd26d67cf9a9bd83095aae6c3d0708dd9aef4a5747d3dae2ec7e5

    • SSDEEP

      12288:8IBwFnGYEVc2OJjnj25VxOnEjzS1nsxmb:a5EyVJ2FOE3Ed

    • Windows security bypass

    • Disables taskbar notifications via registry modification

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Windows security modification

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks