Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
29be82b7020fc45f5b4768dcad8d12d4_JaffaCakes118
-
Size
646KB
-
Sample
240707-fkfgyawgnf
-
MD5
29be82b7020fc45f5b4768dcad8d12d4
-
SHA1
b61c18bb320a306a3752fb0a58d54ec6ce86d116
-
SHA256
5a988ea6330246fa9fb9e734a319039c21e85b592a19f886c8352f7c83d68602
-
SHA512
84421020317e896c38906921295d11644241f7c7dee426a019d34ddb606ab1b9a308c8c4b45cda00bedf2dc9e2f6aedabdcffd1686be2d8028461e0d07de7fe0
-
SSDEEP
12288:4DGI8Zsxgb0FK3ARkKWhZ4FoKMDhtJ8IpaCAO7G1xYfg9k+1A0G6FjuaFUs:4DFpM0Q3trZ46KMDhfX7Nfck+1AcjLT
Behavioral task
behavioral1
Sample
29be82b7020fc45f5b4768dcad8d12d4_JaffaCakes118.exe
Resource
win7-20240705-en
Malware Config
Targets
-
-
Target
29be82b7020fc45f5b4768dcad8d12d4_JaffaCakes118
-
Size
646KB
-
MD5
29be82b7020fc45f5b4768dcad8d12d4
-
SHA1
b61c18bb320a306a3752fb0a58d54ec6ce86d116
-
SHA256
5a988ea6330246fa9fb9e734a319039c21e85b592a19f886c8352f7c83d68602
-
SHA512
84421020317e896c38906921295d11644241f7c7dee426a019d34ddb606ab1b9a308c8c4b45cda00bedf2dc9e2f6aedabdcffd1686be2d8028461e0d07de7fe0
-
SSDEEP
12288:4DGI8Zsxgb0FK3ARkKWhZ4FoKMDhtJ8IpaCAO7G1xYfg9k+1A0G6FjuaFUs:4DFpM0Q3trZ46KMDhfX7Nfck+1AcjLT
-
Checks for common network interception software
Looks in the registry for tools like Wireshark or Fiddler commonly used to analyze network activity.
-
Enumerates VirtualBox registry keys
-
Suspicious use of SetThreadContext
-