Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    1965996980ff5d8425fcc72d1944a720_JaffaCakes118

  • Size

    388KB

  • Sample

    240628-j11plasbkq

  • MD5

    1965996980ff5d8425fcc72d1944a720

  • SHA1

    035a408d1ca0c16b85a25b1f78a94c3f1a6beafc

  • SHA256

    3a61ec2261d8dcd9afb64d860c0ad3f77629176c283f2935e08421f79e1ee1f4

  • SHA512

    1392d31c6bbba068c3e3e17de157c0f93419d8eb2702cb3bae27abaf1ffce28dff46384f262d0daa7791688baa2d40aead04e757f626d718a270f61b5cf647f3

  • SSDEEP

    12288:8xxAP0vj7sBr4CJDhrQt9CsMJkp8xXDHcK:n8vj7m4wDBQSV2k

Malware Config

Targets

    • Target

      1965996980ff5d8425fcc72d1944a720_JaffaCakes118

    • Size

      388KB

    • MD5

      1965996980ff5d8425fcc72d1944a720

    • SHA1

      035a408d1ca0c16b85a25b1f78a94c3f1a6beafc

    • SHA256

      3a61ec2261d8dcd9afb64d860c0ad3f77629176c283f2935e08421f79e1ee1f4

    • SHA512

      1392d31c6bbba068c3e3e17de157c0f93419d8eb2702cb3bae27abaf1ffce28dff46384f262d0daa7791688baa2d40aead04e757f626d718a270f61b5cf647f3

    • SSDEEP

      12288:8xxAP0vj7sBr4CJDhrQt9CsMJkp8xXDHcK:n8vj7m4wDBQSV2k

    • Windows security bypass

    • Disables taskbar notifications via registry modification

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Windows security modification

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks