Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2e5fafd333da76824926bacb8dc970da_JaffaCakes118
-
Size
3.0MB
-
Sample
240709-ashz5syhqd
-
MD5
2e5fafd333da76824926bacb8dc970da
-
SHA1
89a0e15746b345e8bdb22aed021185efdcb142f2
-
SHA256
00c70a2b71a6d16c004afb510e5dd6dfd22c3708030b7061a8bfa25b6cbf57eb
-
SHA512
bad8d6165aaee55070431e31af588665ab1b918cd7001f6d0b499b42d6d075bf1ca27f1a315aec390ecd3650ddd0e93ccf5bc0ccdf309ee8b29f3788d7dcf750
-
SSDEEP
49152:HnaE1fG90AL2w9ahaSBuW1sPdhEVznJOwJUz+Llrc7o1oHRHMJxgYpw2QS90NAFF:HaKG95L2z391mfMzn//g74uNWgvL40n
Malware Config
Targets
-
-
Target
2e5fafd333da76824926bacb8dc970da_JaffaCakes118
-
Size
3.0MB
-
MD5
2e5fafd333da76824926bacb8dc970da
-
SHA1
89a0e15746b345e8bdb22aed021185efdcb142f2
-
SHA256
00c70a2b71a6d16c004afb510e5dd6dfd22c3708030b7061a8bfa25b6cbf57eb
-
SHA512
bad8d6165aaee55070431e31af588665ab1b918cd7001f6d0b499b42d6d075bf1ca27f1a315aec390ecd3650ddd0e93ccf5bc0ccdf309ee8b29f3788d7dcf750
-
SSDEEP
49152:HnaE1fG90AL2w9ahaSBuW1sPdhEVznJOwJUz+Llrc7o1oHRHMJxgYpw2QS90NAFF:HaKG95L2z391mfMzn//g74uNWgvL40n
Score8/10-
Stops running service(s)
-
Uses Session Manager for persistence
Creates Session Manager registry key to run executable early in system boot.
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Execution
Scheduled Task/Job
1Scheduled Task
1System Services
1Service Execution
1Persistence
Boot or Logon Autostart Execution
2Registry Run Keys / Startup Folder
2Create or Modify System Process
1Windows Service
1Scheduled Task/Job
1Scheduled Task
1