Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    3add78d02edf27ab7f616b4825a94715_JaffaCakes118

  • Size

    373KB

  • Sample

    240711-1t3daawbqj

  • MD5

    3add78d02edf27ab7f616b4825a94715

  • SHA1

    f728119ed96528f00ffc05c1b29dbf7fd86e140f

  • SHA256

    da0e9949633cfd2894625c9f1c648f87c7bab530ae0db53c59a02d93fc9a9e18

  • SHA512

    b46baf7b845388c1f72c2c66df4e5c8499af97d00f5900914c15694538509a9a6ea32fb259b4477ecf7fc2298a57b19915276af444e538bcd7254e9c1d66f692

  • SSDEEP

    6144:8Agw1CkuzRUioXf0YLXRYHx3JpNe4Muvfz0daKS+ccYu:8muzRUXvQ2qfIdu3c

Malware Config

Targets

    • Target

      3add78d02edf27ab7f616b4825a94715_JaffaCakes118

    • Size

      373KB

    • MD5

      3add78d02edf27ab7f616b4825a94715

    • SHA1

      f728119ed96528f00ffc05c1b29dbf7fd86e140f

    • SHA256

      da0e9949633cfd2894625c9f1c648f87c7bab530ae0db53c59a02d93fc9a9e18

    • SHA512

      b46baf7b845388c1f72c2c66df4e5c8499af97d00f5900914c15694538509a9a6ea32fb259b4477ecf7fc2298a57b19915276af444e538bcd7254e9c1d66f692

    • SSDEEP

      6144:8Agw1CkuzRUioXf0YLXRYHx3JpNe4Muvfz0daKS+ccYu:8muzRUXvQ2qfIdu3c

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks