Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
4b88861f7732ba0068245b5fb5e3d996_JaffaCakes118
-
Size
152KB
-
Sample
240715-1lhnxatbjb
-
MD5
4b88861f7732ba0068245b5fb5e3d996
-
SHA1
be17fe5248bc7c86cbb216108ecb2897b4adc329
-
SHA256
60d41ddac1da88f5274a1ba1bcf7f6db9be6c41f21f06da52f7c240f5013e00a
-
SHA512
56599c385748d44c0fcea15291ff05815ef28241a40f2ee2621a50ff7aa0776bef45794440fbc4ab84c239e49a69b8f23c74a9d9ca9cb0bdfa8b43227231880e
-
SSDEEP
3072:P9bEcyZ0N5BdKxmSI7Dc/19h83AiPa2fWwkWlKYRNYqXbChk4QFrQuyNRSKsmX:1o0SxmH4/19S3AiScWnWlKYRNhbkyFU2
Malware Config
Targets
-
-
Target
4b88861f7732ba0068245b5fb5e3d996_JaffaCakes118
-
Size
152KB
-
MD5
4b88861f7732ba0068245b5fb5e3d996
-
SHA1
be17fe5248bc7c86cbb216108ecb2897b4adc329
-
SHA256
60d41ddac1da88f5274a1ba1bcf7f6db9be6c41f21f06da52f7c240f5013e00a
-
SHA512
56599c385748d44c0fcea15291ff05815ef28241a40f2ee2621a50ff7aa0776bef45794440fbc4ab84c239e49a69b8f23c74a9d9ca9cb0bdfa8b43227231880e
-
SSDEEP
3072:P9bEcyZ0N5BdKxmSI7Dc/19h83AiPa2fWwkWlKYRNYqXbChk4QFrQuyNRSKsmX:1o0SxmH4/19S3AiScWnWlKYRNhbkyFU2
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-