Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
4775c59cf2b8bc50c711a2d13a3d0dee_JaffaCakes118
-
Size
58KB
-
Sample
240715-axdafszcnm
-
MD5
4775c59cf2b8bc50c711a2d13a3d0dee
-
SHA1
a251e31c74161be66d11fe535151fe02f76cf2ce
-
SHA256
6e484981b456d00eac2f86702eb632738b086d689040ea6b1f1dacf9c321fdab
-
SHA512
f6963031db5cdacb5de11a5bcb0d39acbe5dd02cd9df8f55c0352e7acafaead59cd3d9c23b84cb4972d291f624addff1efa71b93c122f65904e1cdec35820e1f
-
SSDEEP
1536:n6E61syf8nM/sPIug8qKhYHBUiSXdzSEH+nmwm:nDisyfKus1wwX
Static task
static1
Behavioral task
behavioral1
Sample
4775c59cf2b8bc50c711a2d13a3d0dee_JaffaCakes118.exe
Resource
win7-20240705-en
Behavioral task
behavioral2
Sample
4775c59cf2b8bc50c711a2d13a3d0dee_JaffaCakes118.exe
Resource
win10v2004-20240709-en
Malware Config
Targets
-
-
Target
4775c59cf2b8bc50c711a2d13a3d0dee_JaffaCakes118
-
Size
58KB
-
MD5
4775c59cf2b8bc50c711a2d13a3d0dee
-
SHA1
a251e31c74161be66d11fe535151fe02f76cf2ce
-
SHA256
6e484981b456d00eac2f86702eb632738b086d689040ea6b1f1dacf9c321fdab
-
SHA512
f6963031db5cdacb5de11a5bcb0d39acbe5dd02cd9df8f55c0352e7acafaead59cd3d9c23b84cb4972d291f624addff1efa71b93c122f65904e1cdec35820e1f
-
SSDEEP
1536:n6E61syf8nM/sPIug8qKhYHBUiSXdzSEH+nmwm:nDisyfKus1wwX
Score7/10-
Boot or Logon Autostart Execution: Print Processors
Adversaries may abuse print processors to run malicious DLLs during system boot for persistence and/or privilege escalation.
-
Drops file in System32 directory
-