Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    1a8587fcd3b71f44dbbb2c47a62c2260_JaffaCakes118

  • Size

    1.6MB

  • Sample

    240701-jvk2ystdqp

  • MD5

    1a8587fcd3b71f44dbbb2c47a62c2260

  • SHA1

    e812d9f0672aed417399fafc59b11e97617ee38a

  • SHA256

    10dbf43e94a68415f85d0dc5d3ab802f8401e78b83e2afafe7be89953df809f7

  • SHA512

    39937ff5b29126f91f93930fb8c1989e73b4e73b05f42819a721d324d008fe790e66bb961c875b6d3f6a6104540a29aaea924280361ff6dc758abcddc12bc55b

  • SSDEEP

    24576:VC56xZ7Yo7DFErXE4brDFpY3IvERGaFT56qkBMqaT24oBI3FFq5xqYwc:VK6H73tEDpX6IvERjFT0rBkABgSDqYw

Score
7/10

Malware Config

Targets

    • Target

      1a8587fcd3b71f44dbbb2c47a62c2260_JaffaCakes118

    • Size

      1.6MB

    • MD5

      1a8587fcd3b71f44dbbb2c47a62c2260

    • SHA1

      e812d9f0672aed417399fafc59b11e97617ee38a

    • SHA256

      10dbf43e94a68415f85d0dc5d3ab802f8401e78b83e2afafe7be89953df809f7

    • SHA512

      39937ff5b29126f91f93930fb8c1989e73b4e73b05f42819a721d324d008fe790e66bb961c875b6d3f6a6104540a29aaea924280361ff6dc758abcddc12bc55b

    • SSDEEP

      24576:VC56xZ7Yo7DFErXE4brDFpY3IvERGaFT56qkBMqaT24oBI3FFq5xqYwc:VK6H73tEDpX6IvERjFT0rBkABgSDqYw

    Score
    7/10
    • Identifies Wine through registry keys

      Wine is a compatibility layer capable of running Windows applications, which can be used as sandboxing environment.

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks