Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    46c735b20826cf3c6c2b254f8a9fff87_JaffaCakes118

  • Size

    15KB

  • Sample

    240714-vvjdxazdrn

  • MD5

    46c735b20826cf3c6c2b254f8a9fff87

  • SHA1

    22bea2c35a4ed5d5f43472699184c8ac07710104

  • SHA256

    787fb84b58bedc4dd810375b2e367f4d121f7d8fb79d658429d49092a9329678

  • SHA512

    2e3eefc4020769b124dd211c5378a70cf1f8f7e9e04417d42f058de274e8248815747bde79f9fe06950ca7fe4bd248c0354a43e98490a9053ad9790933d420f4

  • SSDEEP

    384:akaP1tw/hqGDZDZttYUYVbnEMesFCsxw/ZAmWmaMcgAEl:aY5qcZtlybnEMesFCsq/amW5Mcgdl

Malware Config

Targets

    • Target

      46c735b20826cf3c6c2b254f8a9fff87_JaffaCakes118

    • Size

      15KB

    • MD5

      46c735b20826cf3c6c2b254f8a9fff87

    • SHA1

      22bea2c35a4ed5d5f43472699184c8ac07710104

    • SHA256

      787fb84b58bedc4dd810375b2e367f4d121f7d8fb79d658429d49092a9329678

    • SHA512

      2e3eefc4020769b124dd211c5378a70cf1f8f7e9e04417d42f058de274e8248815747bde79f9fe06950ca7fe4bd248c0354a43e98490a9053ad9790933d420f4

    • SSDEEP

      384:akaP1tw/hqGDZDZttYUYVbnEMesFCsxw/ZAmWmaMcgAEl:aY5qcZtlybnEMesFCsq/amW5Mcgdl

    • Blocklisted process makes network request

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks