Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
26fd6c92e3a674b0867a61fe0ae6ce9c_JaffaCakes118
-
Size
124KB
-
Sample
240705-sggl2s1ajj
-
MD5
26fd6c92e3a674b0867a61fe0ae6ce9c
-
SHA1
fd33c20f398251632db5ecc896aaf47254429c5f
-
SHA256
461bc6ec70f4ff311bf48212a4f4bdf89992df6d852dcbda7c298516350bd0e4
-
SHA512
ff03e5767d4f2ed7119e572503a99c3bd63bb51cf112b873901df955e3a9fb86b7f9d071b28258825de1846d0015af4bea1f9b1815c8a6d04130216a66a1eb17
-
SSDEEP
768:F40vn8Soqg/Y6YQXNvP6znrwN3m1zty1IhB+j4pt8DtWKVKnpRKwRMGK2iLI+8Sp:d7oqg/YPQgzkKiIhk8pt84baUK2iM9S
Static task
static1
Behavioral task
behavioral1
Sample
26fd6c92e3a674b0867a61fe0ae6ce9c_JaffaCakes118.exe
Resource
win7-20240705-en
Behavioral task
behavioral2
Sample
26fd6c92e3a674b0867a61fe0ae6ce9c_JaffaCakes118.exe
Resource
win10v2004-20240704-en
Malware Config
Targets
-
-
Target
26fd6c92e3a674b0867a61fe0ae6ce9c_JaffaCakes118
-
Size
124KB
-
MD5
26fd6c92e3a674b0867a61fe0ae6ce9c
-
SHA1
fd33c20f398251632db5ecc896aaf47254429c5f
-
SHA256
461bc6ec70f4ff311bf48212a4f4bdf89992df6d852dcbda7c298516350bd0e4
-
SHA512
ff03e5767d4f2ed7119e572503a99c3bd63bb51cf112b873901df955e3a9fb86b7f9d071b28258825de1846d0015af4bea1f9b1815c8a6d04130216a66a1eb17
-
SSDEEP
768:F40vn8Soqg/Y6YQXNvP6znrwN3m1zty1IhB+j4pt8DtWKVKnpRKwRMGK2iLI+8Sp:d7oqg/YPQgzkKiIhk8pt84baUK2iM9S
Score8/10-
Adds policy Run key to start application
-
Executes dropped EXE
-
Adds Run key to start application
-
Drops file in System32 directory
-
Suspicious use of SetThreadContext
-