Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
46ea99b7cc127192f343f421f3471462_JaffaCakes118
-
Size
1.9MB
-
Sample
240714-wm7xza1erj
-
MD5
46ea99b7cc127192f343f421f3471462
-
SHA1
7f751140c3813ed26681e261d896451f08ecc51e
-
SHA256
7f0f4868b12001237dd75e360ae392f6b174a1998e40d25b4926bafe2774f36d
-
SHA512
0d4f80d5e8a0c946e13d6e1d36a8c4cf8bfd4b15cedc1ca78b135198f69d48c05787541a99013545e1fe92b1bc863f37ee17d22d400d8be9bcc61f8dfb420612
-
SSDEEP
49152:Tx50eHsaHqe9AQhlPiTPi/3OQBipYI46GUA:Nuetqe9AQhlPiTPi/3OQBipYI46GUA
Malware Config
Targets
-
-
Target
46ea99b7cc127192f343f421f3471462_JaffaCakes118
-
Size
1.9MB
-
MD5
46ea99b7cc127192f343f421f3471462
-
SHA1
7f751140c3813ed26681e261d896451f08ecc51e
-
SHA256
7f0f4868b12001237dd75e360ae392f6b174a1998e40d25b4926bafe2774f36d
-
SHA512
0d4f80d5e8a0c946e13d6e1d36a8c4cf8bfd4b15cedc1ca78b135198f69d48c05787541a99013545e1fe92b1bc863f37ee17d22d400d8be9bcc61f8dfb420612
-
SSDEEP
49152:Tx50eHsaHqe9AQhlPiTPi/3OQBipYI46GUA:Nuetqe9AQhlPiTPi/3OQBipYI46GUA
Score10/10-
Modifies firewall policy service
-
Executes dropped EXE
-
Loads dropped DLL
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Create or Modify System Process
1Windows Service
1Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Create or Modify System Process
1Windows Service
1