Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
4169637d7706c5e78faebca09a4247a1_JaffaCakes118
-
Size
420KB
-
Sample
240713-m7f6bazgjf
-
MD5
4169637d7706c5e78faebca09a4247a1
-
SHA1
8b98cf0e37042fb730f80fec7184d49312046bd3
-
SHA256
6cd26d42c6cfb34472dda17e1c441cde9e2cb6f7e9d23a26deb336760e09a656
-
SHA512
c12eb1091e1c0f713dad405bc4fac0eeb3214c376f2e985342457c4c193db75a975af1a67a60b8326172165483ea9831ba36a29bdd8a81978ac2674f0092b746
-
SSDEEP
12288:jUt5x9ApH8/Jjzb3GVCPHZ1wkwWklnOtII0X4QDxZIq:wSH8hjfGVCP5ekw8II0rZIq
Static task
static1
Behavioral task
behavioral1
Sample
4169637d7706c5e78faebca09a4247a1_JaffaCakes118.exe
Resource
win7-20240704-en
Malware Config
Extracted
sality
http://89.119.67.154/testo5/
http://kukutrustnet777.info/home.gif
http://kukutrustnet888.info/home.gif
http://kukutrustnet987.info/home.gif
Targets
-
-
Target
4169637d7706c5e78faebca09a4247a1_JaffaCakes118
-
Size
420KB
-
MD5
4169637d7706c5e78faebca09a4247a1
-
SHA1
8b98cf0e37042fb730f80fec7184d49312046bd3
-
SHA256
6cd26d42c6cfb34472dda17e1c441cde9e2cb6f7e9d23a26deb336760e09a656
-
SHA512
c12eb1091e1c0f713dad405bc4fac0eeb3214c376f2e985342457c4c193db75a975af1a67a60b8326172165483ea9831ba36a29bdd8a81978ac2674f0092b746
-
SSDEEP
12288:jUt5x9ApH8/Jjzb3GVCPHZ1wkwWklnOtII0X4QDxZIq:wSH8hjfGVCP5ekw8II0rZIq
-
Modifies firewall policy service
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Abuse Elevation Control Mechanism
1Bypass User Account Control
1Create or Modify System Process
1Windows Service
1