Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
26e6607fd06113a8b339b087f524500c_JaffaCakes118
-
Size
176KB
-
Sample
240705-n86m2azhrg
-
MD5
26e6607fd06113a8b339b087f524500c
-
SHA1
27b7896750532a8a9c6685c71b2f41867504a53d
-
SHA256
0e2cc0d61a8dce14e5fc9370f28df7d72f28fbd1d9d95e05c2b14e0500155a80
-
SHA512
d24a47a6cea9161382eee02f8ad61291a5f5b7d9e562054262a093feaefa18f671ceba3bac7998725b5c15f321fd6bf8442507ec38fb734d666367d56ebe5fb2
-
SSDEEP
3072:I/gPUZAjpDzFZeapdSbn4p+cKg91GAFWj2iQKGYV0JwVzNc7:njpNZXL+cF9YAF425KhVh
Static task
static1
Behavioral task
behavioral1
Sample
26e6607fd06113a8b339b087f524500c_JaffaCakes118.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
26e6607fd06113a8b339b087f524500c_JaffaCakes118.exe
Resource
win10v2004-20240704-en
Malware Config
Targets
-
-
Target
26e6607fd06113a8b339b087f524500c_JaffaCakes118
-
Size
176KB
-
MD5
26e6607fd06113a8b339b087f524500c
-
SHA1
27b7896750532a8a9c6685c71b2f41867504a53d
-
SHA256
0e2cc0d61a8dce14e5fc9370f28df7d72f28fbd1d9d95e05c2b14e0500155a80
-
SHA512
d24a47a6cea9161382eee02f8ad61291a5f5b7d9e562054262a093feaefa18f671ceba3bac7998725b5c15f321fd6bf8442507ec38fb734d666367d56ebe5fb2
-
SSDEEP
3072:I/gPUZAjpDzFZeapdSbn4p+cKg91GAFWj2iQKGYV0JwVzNc7:njpNZXL+cF9YAF425KhVh
Score7/10-
Deletes itself
-
Executes dropped EXE
-
Unexpected DNS network traffic destination
Network traffic to other servers than the configured DNS servers was detected on the DNS port.
-
Drops desktop.ini file(s)
-
Suspicious use of SetThreadContext
-