Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    21641e2a1f1ffec61b49cafe4c484ee9_JaffaCakes118

  • Size

    100KB

  • Sample

    240703-g97s6a1erf

  • MD5

    21641e2a1f1ffec61b49cafe4c484ee9

  • SHA1

    b7a6b55091a818dff1c208f8fcb67df304ab3954

  • SHA256

    94e18356971da2fc277b32660b05db0eb029e9f740746762b15ba4cde46bf3ce

  • SHA512

    31c4a385ae561c2c20fc999bf7e562e18812cafa262a2752b43a2cb7e466e235fd9995427a5f251ee2906c16bc81f211d42431f3cae5b3f33e08c49132a415c6

  • SSDEEP

    3072:vq9XYeIKm8dkc5soEz0uU+ykTsRgo7kY:i9oeIckc5szjU18FY

Malware Config

Targets

    • Target

      21641e2a1f1ffec61b49cafe4c484ee9_JaffaCakes118

    • Size

      100KB

    • MD5

      21641e2a1f1ffec61b49cafe4c484ee9

    • SHA1

      b7a6b55091a818dff1c208f8fcb67df304ab3954

    • SHA256

      94e18356971da2fc277b32660b05db0eb029e9f740746762b15ba4cde46bf3ce

    • SHA512

      31c4a385ae561c2c20fc999bf7e562e18812cafa262a2752b43a2cb7e466e235fd9995427a5f251ee2906c16bc81f211d42431f3cae5b3f33e08c49132a415c6

    • SSDEEP

      3072:vq9XYeIKm8dkc5soEz0uU+ykTsRgo7kY:i9oeIckc5szjU18FY

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks