Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2bb4c657c34f640c087cf2018f48184d_JaffaCakes118

  • Size

    300KB

  • Sample

    240708-kqh78stdna

  • MD5

    2bb4c657c34f640c087cf2018f48184d

  • SHA1

    b4d98b6d2fc5682711f458bdfe8c7af838c60f41

  • SHA256

    b8bf8b9e823702e4028c3dc2bd6f1cac5b47bbed044479e6731972ca0db9f4a3

  • SHA512

    25579ee06d7a1bc8dbf1e53f46494b0958ff3afa010920bcc45c56c6cc03f39f7dfe43b8c21de50033caad8258d6da86282e69bf6f8a840b8de727943b1f30a9

  • SSDEEP

    6144:jp1eHtHuPdq1i/qwdm+4ddvSLKv/xesM3QVfway9c3sKGeygTp2yFQ:tANHuPQ1AB2DhesM3ufwjO3ODgjFQ

Score
7/10

Malware Config

Targets

    • Target

      2bb4c657c34f640c087cf2018f48184d_JaffaCakes118

    • Size

      300KB

    • MD5

      2bb4c657c34f640c087cf2018f48184d

    • SHA1

      b4d98b6d2fc5682711f458bdfe8c7af838c60f41

    • SHA256

      b8bf8b9e823702e4028c3dc2bd6f1cac5b47bbed044479e6731972ca0db9f4a3

    • SHA512

      25579ee06d7a1bc8dbf1e53f46494b0958ff3afa010920bcc45c56c6cc03f39f7dfe43b8c21de50033caad8258d6da86282e69bf6f8a840b8de727943b1f30a9

    • SSDEEP

      6144:jp1eHtHuPdq1i/qwdm+4ddvSLKv/xesM3QVfway9c3sKGeygTp2yFQ:tANHuPQ1AB2DhesM3ufwjO3ODgjFQ

    Score
    7/10
    • Reads data files stored by FTP clients

      Tries to access configuration files associated with programs like FileZilla.

    • Reads local data of messenger clients

      Infostealers often target stored data of messaging applications, which can include saved credentials and account information.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks