Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    4674b3995135b85c1a8e6efff8a18c89_JaffaCakes118

  • Size

    313KB

  • Sample

    240714-s434kawgrk

  • MD5

    4674b3995135b85c1a8e6efff8a18c89

  • SHA1

    e915dc78681a567f6306f53f0f9d25500a76c031

  • SHA256

    15ebd2e211121cd53d0b5ad588a27b3b6a7cfcff048e3fe0e3ecda5ead228221

  • SHA512

    371710048ee9d20b390dd56756ed1701e3cc05ffc9f1607a22d93e4fe5a2531aff8ae2571951254eeda0c00b85e3228e0f6f44f9de642acab12ee5e303c09fd8

  • SSDEEP

    6144:91OgDPdkBAFZWjadD4sK0I5xD4tcpv+d5xAYAfhuDIXY8Z4kJCCcIk:91OgLdabbpmXxH4IIo8ZCzIk

Malware Config

Targets

    • Target

      4674b3995135b85c1a8e6efff8a18c89_JaffaCakes118

    • Size

      313KB

    • MD5

      4674b3995135b85c1a8e6efff8a18c89

    • SHA1

      e915dc78681a567f6306f53f0f9d25500a76c031

    • SHA256

      15ebd2e211121cd53d0b5ad588a27b3b6a7cfcff048e3fe0e3ecda5ead228221

    • SHA512

      371710048ee9d20b390dd56756ed1701e3cc05ffc9f1607a22d93e4fe5a2531aff8ae2571951254eeda0c00b85e3228e0f6f44f9de642acab12ee5e303c09fd8

    • SSDEEP

      6144:91OgDPdkBAFZWjadD4sK0I5xD4tcpv+d5xAYAfhuDIXY8Z4kJCCcIk:91OgLdabbpmXxH4IIo8ZCzIk

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

MITRE ATT&CK Enterprise v15

Tasks