Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    1a9b9af755538f531316e9c111418866_JaffaCakes118

  • Size

    11.2MB

  • Sample

    240701-keeqns1gkb

  • MD5

    1a9b9af755538f531316e9c111418866

  • SHA1

    be72b69c47971fda0e453453de20a2742a27144b

  • SHA256

    0ba6333e2f21f5a1559c3a2b3d363f336b93eac4a6a31b08b899621e5b39099c

  • SHA512

    2f1a96e412797023932550acce4476b09c0cd2dea41e8d52c4882fb0f5055fa32471dff15204b1ea54f7cd3a2fe34aaefad7e030f0584399a2ba6dfad797591b

  • SSDEEP

    196608:t/Dm+89/7/lthjzRHORtLpKkcT2qFOjB4SI9gp3RhsduVHTIawZUw94dC3Ibu4WB:tb9MuRtLKahl8gpBYu5m94Q3f4W0U

Score
7/10

Malware Config

Targets

    • Target

      1a9b9af755538f531316e9c111418866_JaffaCakes118

    • Size

      11.2MB

    • MD5

      1a9b9af755538f531316e9c111418866

    • SHA1

      be72b69c47971fda0e453453de20a2742a27144b

    • SHA256

      0ba6333e2f21f5a1559c3a2b3d363f336b93eac4a6a31b08b899621e5b39099c

    • SHA512

      2f1a96e412797023932550acce4476b09c0cd2dea41e8d52c4882fb0f5055fa32471dff15204b1ea54f7cd3a2fe34aaefad7e030f0584399a2ba6dfad797591b

    • SSDEEP

      196608:t/Dm+89/7/lthjzRHORtLpKkcT2qFOjB4SI9gp3RhsduVHTIawZUw94dC3Ibu4WB:tb9MuRtLKahl8gpBYu5m94Q3f4W0U

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

MITRE ATT&CK Enterprise v15

Tasks