Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    1b4e5eb487d966f8b446cf7effd2ac69_JaffaCakes118

  • Size

    1.2MB

  • Sample

    240701-pn3w3s1hje

  • MD5

    1b4e5eb487d966f8b446cf7effd2ac69

  • SHA1

    7e0a1b084423db665b244b8c7eade88fd99b804f

  • SHA256

    17eb7aca0b4fe76f2d5e3ea4916cf5658da5c7092f09b703c5d75da22446377c

  • SHA512

    8b3df6bdc362744d3d070553f49990e475eb387c0614f58426a033149203f83a4a176f2a7358034e6c1fe75ad8f7f0472bc4ffeea69f8b7d93daa8150d8638b4

  • SSDEEP

    24576:Wv9ZORd/2LGq3dt5Fior66tiJBcy22EMAs/3AMwNC1r3jU6zl:Wv7ORd/sGsCzN/3AM2CdQ6zl

Malware Config

Targets

    • Target

      1b4e5eb487d966f8b446cf7effd2ac69_JaffaCakes118

    • Size

      1.2MB

    • MD5

      1b4e5eb487d966f8b446cf7effd2ac69

    • SHA1

      7e0a1b084423db665b244b8c7eade88fd99b804f

    • SHA256

      17eb7aca0b4fe76f2d5e3ea4916cf5658da5c7092f09b703c5d75da22446377c

    • SHA512

      8b3df6bdc362744d3d070553f49990e475eb387c0614f58426a033149203f83a4a176f2a7358034e6c1fe75ad8f7f0472bc4ffeea69f8b7d93daa8150d8638b4

    • SSDEEP

      24576:Wv9ZORd/2LGq3dt5Fior66tiJBcy22EMAs/3AMwNC1r3jU6zl:Wv7ORd/sGsCzN/3AM2CdQ6zl

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

MITRE ATT&CK Enterprise v15

Tasks