Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
22792ae5942d52ddd9d364d43102b07f_JaffaCakes118
-
Size
264KB
-
Sample
240703-qfw91azbrn
-
MD5
22792ae5942d52ddd9d364d43102b07f
-
SHA1
0625e734a8e3ee6d469445b4df0c063b26845eda
-
SHA256
9b3715d5a9113b0d6db0f0fb5e35a75b74db18c8eeb0b2a851634279e153dd2a
-
SHA512
d5f4cdf22ed6222cf83b2d9afa99c9875f61d5fe5360fe4e2863e0036d8021cf33f8670ca1302063466df048790b8ebbb9c4c04e9d18ab005635933f4c759d56
-
SSDEEP
3072:7wwQcqsOxH82IDyG2pfr4GNLzECcKIvMBSYWunCvPQiwhjXH1WkaBx5/lvnjLYad:MwQ3sOxc9Ic6OLynWunzXH1W9r3
Malware Config
Targets
-
-
Target
22792ae5942d52ddd9d364d43102b07f_JaffaCakes118
-
Size
264KB
-
MD5
22792ae5942d52ddd9d364d43102b07f
-
SHA1
0625e734a8e3ee6d469445b4df0c063b26845eda
-
SHA256
9b3715d5a9113b0d6db0f0fb5e35a75b74db18c8eeb0b2a851634279e153dd2a
-
SHA512
d5f4cdf22ed6222cf83b2d9afa99c9875f61d5fe5360fe4e2863e0036d8021cf33f8670ca1302063466df048790b8ebbb9c4c04e9d18ab005635933f4c759d56
-
SSDEEP
3072:7wwQcqsOxH82IDyG2pfr4GNLzECcKIvMBSYWunCvPQiwhjXH1WkaBx5/lvnjLYad:MwQ3sOxc9Ic6OLynWunzXH1W9r3
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-