Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    3bf21f030c56758db27520bcccfec895_JaffaCakes118

  • Size

    92KB

  • Sample

    240712-es1mea1ajg

  • MD5

    3bf21f030c56758db27520bcccfec895

  • SHA1

    88e9a04685acc24fd8e16e5ea2d12782366da15b

  • SHA256

    c907c7b07b1ad7b05226e3e2ea51be88c3d92249ded58ca62502efc652611d77

  • SHA512

    fa30a7040164386afe77c96b2e3e431df920091d46885a0e8f422df00e8f6594272e2387015acfa63771e150ab01afe10088ba11d956b9a31a032683c1d93ec1

  • SSDEEP

    1536:Y4prKHq7RWDwj4XcN7Sr3QboUImD1qoVlrQnGCuhUk1sTLzMo:Y4NKHYZkr3QboUIABscSKsPzMo

Malware Config

Targets

    • Target

      3bf21f030c56758db27520bcccfec895_JaffaCakes118

    • Size

      92KB

    • MD5

      3bf21f030c56758db27520bcccfec895

    • SHA1

      88e9a04685acc24fd8e16e5ea2d12782366da15b

    • SHA256

      c907c7b07b1ad7b05226e3e2ea51be88c3d92249ded58ca62502efc652611d77

    • SHA512

      fa30a7040164386afe77c96b2e3e431df920091d46885a0e8f422df00e8f6594272e2387015acfa63771e150ab01afe10088ba11d956b9a31a032683c1d93ec1

    • SSDEEP

      1536:Y4prKHq7RWDwj4XcN7Sr3QboUImD1qoVlrQnGCuhUk1sTLzMo:Y4NKHYZkr3QboUIABscSKsPzMo

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks