Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    3808287657286cad978f473a3cf3917d_JaffaCakes118

  • Size

    731KB

  • Sample

    240711-g5jkrsvhrg

  • MD5

    3808287657286cad978f473a3cf3917d

  • SHA1

    687016c36a133189a598c2768cc98b2cd6e79b10

  • SHA256

    8f7662ee33125eb7c8d53eb7b358aeb6451af51cd30cefd21fe9cd31b5397725

  • SHA512

    aba448bdca1a63729ff4e5cafe1eee9a0f486d7928b3a6e1f19fcf9c7e1f0382019eee2968e8200fe42bf01c986c9d1bf458458e107afd39e907aeca2aea188a

  • SSDEEP

    12288:Jaingtd/9iCpVEZxzraxdUdpmsFmjnDgGeIttwoPR5pWZhAIRXHYnrmm:JaigD/ArravUdsswnlFttwYQRXHYrmm

Malware Config

Targets

    • Target

      3808287657286cad978f473a3cf3917d_JaffaCakes118

    • Size

      731KB

    • MD5

      3808287657286cad978f473a3cf3917d

    • SHA1

      687016c36a133189a598c2768cc98b2cd6e79b10

    • SHA256

      8f7662ee33125eb7c8d53eb7b358aeb6451af51cd30cefd21fe9cd31b5397725

    • SHA512

      aba448bdca1a63729ff4e5cafe1eee9a0f486d7928b3a6e1f19fcf9c7e1f0382019eee2968e8200fe42bf01c986c9d1bf458458e107afd39e907aeca2aea188a

    • SSDEEP

      12288:Jaingtd/9iCpVEZxzraxdUdpmsFmjnDgGeIttwoPR5pWZhAIRXHYnrmm:JaigD/ArravUdsswnlFttwYQRXHYrmm

    • Modifies Windows Firewall

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

MITRE ATT&CK Enterprise v15

Tasks