Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    40042b55273684a83a5e92c23fc915a9_JaffaCakes118

  • Size

    607KB

  • Sample

    240713-d2e7dsteqj

  • MD5

    40042b55273684a83a5e92c23fc915a9

  • SHA1

    4c3e720d12fa2db15df614899c31dd35913d4281

  • SHA256

    352341fd30acc97b1723b9bad2c125ebdf3ab6eb082cac0600923d2ae5923801

  • SHA512

    577b378d95ed4502bdcc52f747f83e83b10003b69be111648973ea4347989e285cb344c1ecf5277b7a31131c11c371facf8a6668069f3cf7e63ba7efb1996b09

  • SSDEEP

    12288:yK+dvgBuL4X2AAn0W7vc3XyoKaBa5jxlHMjUYBdh7DSO6UNGJNp:x+dIYaAnbDoKa0jlHMjUC7DS5UgNp

Malware Config

Targets

    • Target

      40042b55273684a83a5e92c23fc915a9_JaffaCakes118

    • Size

      607KB

    • MD5

      40042b55273684a83a5e92c23fc915a9

    • SHA1

      4c3e720d12fa2db15df614899c31dd35913d4281

    • SHA256

      352341fd30acc97b1723b9bad2c125ebdf3ab6eb082cac0600923d2ae5923801

    • SHA512

      577b378d95ed4502bdcc52f747f83e83b10003b69be111648973ea4347989e285cb344c1ecf5277b7a31131c11c371facf8a6668069f3cf7e63ba7efb1996b09

    • SSDEEP

      12288:yK+dvgBuL4X2AAn0W7vc3XyoKaBa5jxlHMjUYBdh7DSO6UNGJNp:x+dIYaAnbDoKa0jlHMjUC7DS5UgNp

    • ASPack v2.12-2.42

      Detects executables packed with ASPack v2.12-2.42

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks