Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
19941092c00fe2083d3615e6b248188b_JaffaCakes118
-
Size
26KB
-
Sample
240628-k6vafavapj
-
MD5
19941092c00fe2083d3615e6b248188b
-
SHA1
b026ac662b6e564a802f4b5b4e77271b6e892d56
-
SHA256
8586dd4c94fa9f5c113c11c12c289321a3f9bdff99ab09132343155b637140db
-
SHA512
be9f5d86ac1c3a887d10333ae0f7506be4b32c8ce4dd0f82286faed553aa6e27accac2c0158b27cbf88b359c3477ea555d52deab26b527a23f0c3d67f329cd63
-
SSDEEP
384:5VgAFfec5YzWUIN5JJO7ocuDg+nUHJg0tx0/PUxS20:QMWqYzpITPAKuHJg070Ux
Static task
static1
Behavioral task
behavioral1
Sample
19941092c00fe2083d3615e6b248188b_JaffaCakes118.exe
Resource
win7-20240419-en
Behavioral task
behavioral2
Sample
19941092c00fe2083d3615e6b248188b_JaffaCakes118.exe
Resource
win10v2004-20240611-en
Malware Config
Targets
-
-
Target
19941092c00fe2083d3615e6b248188b_JaffaCakes118
-
Size
26KB
-
MD5
19941092c00fe2083d3615e6b248188b
-
SHA1
b026ac662b6e564a802f4b5b4e77271b6e892d56
-
SHA256
8586dd4c94fa9f5c113c11c12c289321a3f9bdff99ab09132343155b637140db
-
SHA512
be9f5d86ac1c3a887d10333ae0f7506be4b32c8ce4dd0f82286faed553aa6e27accac2c0158b27cbf88b359c3477ea555d52deab26b527a23f0c3d67f329cd63
-
SSDEEP
384:5VgAFfec5YzWUIN5JJO7ocuDg+nUHJg0tx0/PUxS20:QMWqYzpITPAKuHJg070Ux
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Suspicious use of SetThreadContext
-