Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    3d471a83ed7c39a7c1c6c30f542f690c_JaffaCakes118

  • Size

    106KB

  • Sample

    240712-n3l2fascrm

  • MD5

    3d471a83ed7c39a7c1c6c30f542f690c

  • SHA1

    0095881939a2373587992c8630da1ccbc5cd5061

  • SHA256

    7fc57190388ab4a4454026b364d9a58a3ed0a193282500542a09984c12002532

  • SHA512

    f7550e10d7069b057ca6518dc040c8ddbe5edd6680325c615051d33464535b36bc69318dc85aee7a161f9afd57305abe8163b9dc5fabba8b7d941a4d5934a542

  • SSDEEP

    768:ovAbpyCVU4NGMMD3016VY1q/miAK7TubFBCLmRdnukufMZg+sddagY8WL:oIdfgD3//zTACWZuDEZPseMWL

Score
7/10

Malware Config

Targets

    • Target

      3d471a83ed7c39a7c1c6c30f542f690c_JaffaCakes118

    • Size

      106KB

    • MD5

      3d471a83ed7c39a7c1c6c30f542f690c

    • SHA1

      0095881939a2373587992c8630da1ccbc5cd5061

    • SHA256

      7fc57190388ab4a4454026b364d9a58a3ed0a193282500542a09984c12002532

    • SHA512

      f7550e10d7069b057ca6518dc040c8ddbe5edd6680325c615051d33464535b36bc69318dc85aee7a161f9afd57305abe8163b9dc5fabba8b7d941a4d5934a542

    • SSDEEP

      768:ovAbpyCVU4NGMMD3016VY1q/miAK7TubFBCLmRdnukufMZg+sddagY8WL:oIdfgD3//zTACWZuDEZPseMWL

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

MITRE ATT&CK Enterprise v15

Tasks