Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2eb5469afffcc1eba530f7cb2f1cec72_JaffaCakes118
-
Size
194KB
-
Sample
240709-c5dbjavblc
-
MD5
2eb5469afffcc1eba530f7cb2f1cec72
-
SHA1
c5ea4434fcc9905419ddd1c0d3029c1f12daa893
-
SHA256
63ac974bebaea56825e604d008b0985e6500650e81fee34b424161c8c0d5fed2
-
SHA512
c90c9ed13a5f2688825a7728eeea9243e5b01151ea8ac44d43652e6cd9ef03b72eca19a9af00a34a6892def54f56dc32f22c828b88bf2c9451fde0cc68e0402a
-
SSDEEP
3072:5djR7NQRMn3A/Qtl9WNkRbb7u77lqLWk3agqvRlO6vQMXFppUPtNTV/eQz4:5xBNsqj7RqOW9HvPpoMjp6D/eQz
Malware Config
Targets
-
-
Target
2eb5469afffcc1eba530f7cb2f1cec72_JaffaCakes118
-
Size
194KB
-
MD5
2eb5469afffcc1eba530f7cb2f1cec72
-
SHA1
c5ea4434fcc9905419ddd1c0d3029c1f12daa893
-
SHA256
63ac974bebaea56825e604d008b0985e6500650e81fee34b424161c8c0d5fed2
-
SHA512
c90c9ed13a5f2688825a7728eeea9243e5b01151ea8ac44d43652e6cd9ef03b72eca19a9af00a34a6892def54f56dc32f22c828b88bf2c9451fde0cc68e0402a
-
SSDEEP
3072:5djR7NQRMn3A/Qtl9WNkRbb7u77lqLWk3agqvRlO6vQMXFppUPtNTV/eQz4:5xBNsqj7RqOW9HvPpoMjp6D/eQz
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Loads dropped DLL
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops file in System32 directory
-
Sets desktop wallpaper using registry
-