Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2922f9040088cb86f7d8f13f2ef96bc8_JaffaCakes118

  • Size

    1.1MB

  • Sample

    240706-wvfhpa1bph

  • MD5

    2922f9040088cb86f7d8f13f2ef96bc8

  • SHA1

    8403ca7464c6f76a1c61e2b65336baf95e33107b

  • SHA256

    1ba42797d3deb98718cc45e2a49820b09a33a3780064fd016c883fd7a1b04e6f

  • SHA512

    231f138271273d742298594a77b92dcb7f1d26754338d8326485039d66a7e682b30fcc5dc410ffbc2a8c1a8a1a612740ca62222097af95e89fef7e5bf65adb20

  • SSDEEP

    24576:0lKfoV9Ih72HgbL+bBD4yyLWF2+4WzA70fA6IzwJ87g:CvIsOL+bRRfg+qUOM

Malware Config

Targets

    • Target

      2922f9040088cb86f7d8f13f2ef96bc8_JaffaCakes118

    • Size

      1.1MB

    • MD5

      2922f9040088cb86f7d8f13f2ef96bc8

    • SHA1

      8403ca7464c6f76a1c61e2b65336baf95e33107b

    • SHA256

      1ba42797d3deb98718cc45e2a49820b09a33a3780064fd016c883fd7a1b04e6f

    • SHA512

      231f138271273d742298594a77b92dcb7f1d26754338d8326485039d66a7e682b30fcc5dc410ffbc2a8c1a8a1a612740ca62222097af95e89fef7e5bf65adb20

    • SSDEEP

      24576:0lKfoV9Ih72HgbL+bBD4yyLWF2+4WzA70fA6IzwJ87g:CvIsOL+bRRfg+qUOM

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks