Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    26584ad09940ac217ab26b0deab8c3ab_JaffaCakes118

  • Size

    337KB

  • Sample

    240704-1pkyfa1brr

  • MD5

    26584ad09940ac217ab26b0deab8c3ab

  • SHA1

    2d7d4fef093196effc6e60c76b53582cbe6be653

  • SHA256

    acb8b1983056a81ddf3e2d907e77c1f4acfa1f3e1ee26bc44dfa3d5bc871d17a

  • SHA512

    b46362c43ba7bfff9e76e000767784a2b13eeb71408106a30f19c5bd641c408c256e37740dc4ba312a43f45034bb6fe71d5ba3f525f3b86f0598d7ab272b60ff

  • SSDEEP

    6144:tfwzl1JD1NCrEbtYXb/AIc7Tg/V/zoJIGyxFq/Vl4P:twLJDKrEebfDQ4P

Score
8/10

Malware Config

Targets

    • Target

      26584ad09940ac217ab26b0deab8c3ab_JaffaCakes118

    • Size

      337KB

    • MD5

      26584ad09940ac217ab26b0deab8c3ab

    • SHA1

      2d7d4fef093196effc6e60c76b53582cbe6be653

    • SHA256

      acb8b1983056a81ddf3e2d907e77c1f4acfa1f3e1ee26bc44dfa3d5bc871d17a

    • SHA512

      b46362c43ba7bfff9e76e000767784a2b13eeb71408106a30f19c5bd641c408c256e37740dc4ba312a43f45034bb6fe71d5ba3f525f3b86f0598d7ab272b60ff

    • SSDEEP

      6144:tfwzl1JD1NCrEbtYXb/AIc7Tg/V/zoJIGyxFq/Vl4P:twLJDKrEebfDQ4P

    Score
    8/10
    • Disables taskbar notifications via registry modification

    • Deletes itself

    • Executes dropped EXE

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Drops desktop.ini file(s)

    • Suspicious use of SetThreadContext

MITRE ATT&CK Matrix

Tasks