Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
3e12691b24289c3ad81aa413e0d494f3_JaffaCakes118
-
Size
267KB
-
Sample
240712-tzg6za1eml
-
MD5
3e12691b24289c3ad81aa413e0d494f3
-
SHA1
d54757aba2154161f3a92ff24946a66ff6b958c3
-
SHA256
bae7ddc9ef399724485ef8cd345d2fc4a6cabb672ab303d946bbb65297436106
-
SHA512
cf74246f173328d5e1adc9759d4b40d4ed8254bf111c9a89c787ede55e55784164febef3c30108aee6f8bcab26cd8e2184b3fb13ab06eab3608c99c881bd9cc4
-
SSDEEP
6144:HllslxMfjmxPA2XK/l78oJ5sXXZnW4j9NY:QlEqxPlX078oJOZnd9NY
Malware Config
Targets
-
-
Target
3e12691b24289c3ad81aa413e0d494f3_JaffaCakes118
-
Size
267KB
-
MD5
3e12691b24289c3ad81aa413e0d494f3
-
SHA1
d54757aba2154161f3a92ff24946a66ff6b958c3
-
SHA256
bae7ddc9ef399724485ef8cd345d2fc4a6cabb672ab303d946bbb65297436106
-
SHA512
cf74246f173328d5e1adc9759d4b40d4ed8254bf111c9a89c787ede55e55784164febef3c30108aee6f8bcab26cd8e2184b3fb13ab06eab3608c99c881bd9cc4
-
SSDEEP
6144:HllslxMfjmxPA2XK/l78oJ5sXXZnW4j9NY:QlEqxPlX078oJOZnd9NY
Score10/10-
Modifies WinLogon for persistence
-
Adds Run key to start application
-
Modifies WinLogon
-