Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
47aede614651f6b6da07fa85c6530bd0_JaffaCakes118
-
Size
314KB
-
Sample
240715-b25qyascjm
-
MD5
47aede614651f6b6da07fa85c6530bd0
-
SHA1
ea59ca4373f792d475775ccea6d81b2347b1a6cd
-
SHA256
84b6fed45c78692909d800bda2f89830de123955484fea040f0026e3d122e3a3
-
SHA512
32fc1c21be06719fa1932464f733e567f5a9c13abfbe522603a3c05ae4c5ac1df6dc92fe4838f612ec7af87876a5ac99188d75b9b391ca6e7d946b2a5ed9c273
-
SSDEEP
6144:MRAhhJxX7bNIAROzTuft0Mt+til+XDVLMBvZahDzElq0oAU7UBIMA:UsAAPF0Mt+Il+z3pR+a
Static task
static1
Behavioral task
behavioral1
Sample
47aede614651f6b6da07fa85c6530bd0_JaffaCakes118.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
47aede614651f6b6da07fa85c6530bd0_JaffaCakes118.exe
Resource
win10v2004-20240709-en
Malware Config
Targets
-
-
Target
47aede614651f6b6da07fa85c6530bd0_JaffaCakes118
-
Size
314KB
-
MD5
47aede614651f6b6da07fa85c6530bd0
-
SHA1
ea59ca4373f792d475775ccea6d81b2347b1a6cd
-
SHA256
84b6fed45c78692909d800bda2f89830de123955484fea040f0026e3d122e3a3
-
SHA512
32fc1c21be06719fa1932464f733e567f5a9c13abfbe522603a3c05ae4c5ac1df6dc92fe4838f612ec7af87876a5ac99188d75b9b391ca6e7d946b2a5ed9c273
-
SSDEEP
6144:MRAhhJxX7bNIAROzTuft0Mt+til+XDVLMBvZahDzElq0oAU7UBIMA:UsAAPF0Mt+Il+z3pR+a
Score8/10-
Boot or Logon Autostart Execution: Active Setup
Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
-
Executes dropped EXE
-
Modifies system executable filetype association
-
Adds Run key to start application
-
Drops file in System32 directory
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
2Active Setup
1Registry Run Keys / Startup Folder
1Event Triggered Execution
1Change Default File Association
1