9f8d001690b94e75dbb5e8522a86ee25838c43d66ab2e20a2e26c465c49207a0 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

6

Static

static

3

2ad1f2f3b4...18.exe

windows7-x64

6

2ad1f2f3b4...18.exe

windows10-2004-x64

1

Sharing

General

Target

2ad1f2f3b4b2b535d1948448db0bfeba_JaffaCakes118
Size

340KB
Sample

240708-dx5lgssdpc
MD5

2ad1f2f3b4b2b535d1948448db0bfeba
SHA1

d979a2eacf211dc13abff95ab3b602fe7afe1d12
SHA256

9f8d001690b94e75dbb5e8522a86ee25838c43d66ab2e20a2e26c465c49207a0
SHA512

a92a3f17222522b363c5b9280067671b900f95795e889632f8b911987937d8fd1d7be1db9a97e8ae489340a4b40dd6a5108239266ad9149d9abaa233532e425b
SSDEEP

6144:deTKUiiIKYFXbbYO3XFE4uh9nVW5GJZ2tNYLj8MfsWwBv8L79Vd:YTKY+XbbYT4uhFVzYKj86sWK87rd

Score

6^/10

bootkit persistence

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

2ad1f2f3b4b2b535d1948448db0bfeba_JaffaCakes118.exe

Resource

win7-20240705-en

bootkit persistence

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

2ad1f2f3b4b2b535d1948448db0bfeba_JaffaCakes118.exe

Resource

win10v2004-20240704-en

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Targets

- Target
  
  2ad1f2f3b4b2b535d1948448db0bfeba_JaffaCakes118
- Size
  
  340KB
- MD5
  
  2ad1f2f3b4b2b535d1948448db0bfeba
- SHA1
  
  d979a2eacf211dc13abff95ab3b602fe7afe1d12
- SHA256
  
  9f8d001690b94e75dbb5e8522a86ee25838c43d66ab2e20a2e26c465c49207a0
- SHA512
  
  a92a3f17222522b363c5b9280067671b900f95795e889632f8b911987937d8fd1d7be1db9a97e8ae489340a4b40dd6a5108239266ad9149d9abaa233532e425b
- SSDEEP
  
  6144:deTKUiiIKYFXbbYO3XFE4uh9nVW5GJZ2tNYLj8MfsWwBv8L79Vd:YTKY+XbbYT4uhFVzYKj86sWK87rd
Score

6^/10

bootkit persistence
- Writes to the Master Boot Record (MBR)
  Bootkits write to the MBR to gain persistence at a level below the operating system.
  bootkit persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Pre-OS Boot

Bootkit

Privilege Escalation

Defense Evasion

Pre-OS Boot

Bootkit

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

bootkitpersistence

behavioral2

© 2018-2025

Terms | Privacy

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.