Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    303b4364930185385980bbd274ed4e17_JaffaCakes118

  • Size

    471KB

  • Sample

    240709-nt7xjssdjn

  • MD5

    303b4364930185385980bbd274ed4e17

  • SHA1

    0357a089e56df801e850db959d768bbd7625ed99

  • SHA256

    443f39bdf03fb5ac7ca9914bc5c985ffdf1004411b584a80d5cc3ba1cdb27507

  • SHA512

    d8d0cce024fcc6f1540307a7674c05fc21bce8e6403b6b929a734f0515f322ff0df75e6b5cf6dfe9f498ef0c1aabf9a8d067e71f59570f3882de60e036a06f99

  • SSDEEP

    12288:tgiU0AnS3TvW3HTzuResYyQw+TrZJiT5Y2cKGakitB:tghn0vDcsBsdU0a1

Malware Config

Targets

    • Target

      303b4364930185385980bbd274ed4e17_JaffaCakes118

    • Size

      471KB

    • MD5

      303b4364930185385980bbd274ed4e17

    • SHA1

      0357a089e56df801e850db959d768bbd7625ed99

    • SHA256

      443f39bdf03fb5ac7ca9914bc5c985ffdf1004411b584a80d5cc3ba1cdb27507

    • SHA512

      d8d0cce024fcc6f1540307a7674c05fc21bce8e6403b6b929a734f0515f322ff0df75e6b5cf6dfe9f498ef0c1aabf9a8d067e71f59570f3882de60e036a06f99

    • SSDEEP

      12288:tgiU0AnS3TvW3HTzuResYyQw+TrZJiT5Y2cKGakitB:tghn0vDcsBsdU0a1

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

MITRE ATT&CK Enterprise v15

Tasks