Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    39b910dd70781fd6172223dec41e387e_JaffaCakes118

  • Size

    168KB

  • Sample

    240711-s1h9zssglj

  • MD5

    39b910dd70781fd6172223dec41e387e

  • SHA1

    ba34ed789db1a12f560489a5d6e75bc57c015b19

  • SHA256

    64b0f646baff4e69af64ca67c1e050a1d4a181106bfba1a5ff8e40acb50201f7

  • SHA512

    0d3c1c1447a2d2dabd17852ee20460ca65ce98d2a936ba7edd48a77923d47f13155d952f8c89d34f4f2b39ab76d67923902f5ec38efdec4473cc1b5e9e1ffe12

  • SSDEEP

    3072:9TvfTzcTsw6R9gBPyxxo3c/Q0r6cgZBFqlGpdCbujdA83d:JvfTwQwexYckZPpoYAwd

Score
7/10

Malware Config

Targets

    • Target

      39b910dd70781fd6172223dec41e387e_JaffaCakes118

    • Size

      168KB

    • MD5

      39b910dd70781fd6172223dec41e387e

    • SHA1

      ba34ed789db1a12f560489a5d6e75bc57c015b19

    • SHA256

      64b0f646baff4e69af64ca67c1e050a1d4a181106bfba1a5ff8e40acb50201f7

    • SHA512

      0d3c1c1447a2d2dabd17852ee20460ca65ce98d2a936ba7edd48a77923d47f13155d952f8c89d34f4f2b39ab76d67923902f5ec38efdec4473cc1b5e9e1ffe12

    • SSDEEP

      3072:9TvfTzcTsw6R9gBPyxxo3c/Q0r6cgZBFqlGpdCbujdA83d:JvfTwQwexYckZPpoYAwd

    Score
    7/10
    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Target

      $PLUGINSDIR/StartMenu.dll

    • Size

      9KB

    • MD5

      0a58a89b32428fb848099f33e814e3ed

    • SHA1

      661b73c3ff3579eb9d0c482af7354ee0461634a9

    • SHA256

      aba4f462067f8c872d84c4c1ad6eaccf8bb6546c67c011964f8d2b62170f8236

    • SHA512

      1f4efa7183670f9e9bcf1be56b3165393a97da29080bf1353358933f0f2e0544706982059a9408639782163f4f05bc9d38fca9be110f7d3058f2b0e0017e8dc5

    • SSDEEP

      96:Y0uUUpZMb4pkXuzaVS1pZkrDSgPKqjOYiktlcyFBtsxwwAICZ:ipZS+zac+KdqjOYRcoB6xkICZ

    Score
    3/10
    • Target

      $TEMP/DVDTool.exe

    • Size

      99KB

    • MD5

      8dd598db59289736c42cf73afb27787c

    • SHA1

      ec04d56c176c14b4d1201eea48805cea7f0764d4

    • SHA256

      9abcdc8ad5d114723ac0c1816520c335955cb04d1fc36b03baa8f3784b3b4a41

    • SHA512

      3b380fc858105df6d33b4c0fc4261b12aee7124fe15e3204db1f8ee56a5c6ce2dde38b485a02028da785cc101ed0c7ec1bcdd69485500cfeb4d24e465ac1b61f

    • SSDEEP

      3072:ee55xzUF4oNzCogqxdwiacjy9nF5YKiUXRq7:r7xUFbWiyZ/h

    Score
    7/10
    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Target

      Uninstall.exe

    • Size

      66KB

    • MD5

      70a7fc89543400a0c027632061b44939

    • SHA1

      548d56e2c6e3aa54fbd8a95a5a37abf604890155

    • SHA256

      e4932e2bfa1de990ea24038a3e202046b77eea84bf1a25a48a1bd5c44c6a93c6

    • SHA512

      3238f14cd2f4c1b1ce9873327b833daae2f0ce9c6ccb13cfa52483ca28930353ecf6fb9bedcf1dbe1dffc9aeba22e0ef47e3f800907df70b4f37f97e3bb7be19

    • SSDEEP

      1536:97ANUHtHV6AWzwfFJUPfT4t3kUYp+djPw6RqRigBJbcWIM:9TvfTzcTsw6R9gBTIM

    Score
    7/10
    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks