Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    40071160818cadc654778a4c2f1641c9_JaffaCakes118

  • Size

    242KB

  • Sample

    240713-d4enmstfnm

  • MD5

    40071160818cadc654778a4c2f1641c9

  • SHA1

    a2fa45d06a2421395f5c3d75ddc0624ba5231c4f

  • SHA256

    43b53fd52198a92514d5b00c8e91dc30c5c95e8df8a001499519e55ad6459f2c

  • SHA512

    24b42c0ff7dd165bebe8453b9d5f4dc25153cf890a000ea935604f8ff97a1f9a6a8d0497e9dedf7f26a052adced6597fddb112ccfb96c16c635573733137c6eb

  • SSDEEP

    6144:WkeENDvTSn2SV/GuhYdViC7X57+nMM8AksbtEvT:WNEND/k/GLPX57+nv8AFqvT

Malware Config

Targets

    • Target

      40071160818cadc654778a4c2f1641c9_JaffaCakes118

    • Size

      242KB

    • MD5

      40071160818cadc654778a4c2f1641c9

    • SHA1

      a2fa45d06a2421395f5c3d75ddc0624ba5231c4f

    • SHA256

      43b53fd52198a92514d5b00c8e91dc30c5c95e8df8a001499519e55ad6459f2c

    • SHA512

      24b42c0ff7dd165bebe8453b9d5f4dc25153cf890a000ea935604f8ff97a1f9a6a8d0497e9dedf7f26a052adced6597fddb112ccfb96c16c635573733137c6eb

    • SSDEEP

      6144:WkeENDvTSn2SV/GuhYdViC7X57+nMM8AksbtEvT:WNEND/k/GLPX57+nv8AFqvT

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

MITRE ATT&CK Enterprise v15

Tasks