Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    482352584645a5624483d8b5335abf97_JaffaCakes118

  • Size

    168KB

  • Sample

    240715-emcy6axbnp

  • MD5

    482352584645a5624483d8b5335abf97

  • SHA1

    c07bd38c1db36d413173af12755a0d512ac71ec8

  • SHA256

    9837c79c752713d7405b294e051816c59fcb6e98d1045c25d21414379827b72e

  • SHA512

    010857da0a99e97d534d3fde7e510263a741ec17121bee35790f6185d33dcd3b799fd5c97aaf83e4ad3735d4395f1d3af12608689a1fa9661e0d0a8bb661ea6d

  • SSDEEP

    3072:UtD0uBhYKeZH2Fi1ZcmpWpFg91IxW9KmyFn8eTs8:UxNBhYFZaiFpWDgrIxoKmyxjs

Malware Config

Targets

    • Target

      482352584645a5624483d8b5335abf97_JaffaCakes118

    • Size

      168KB

    • MD5

      482352584645a5624483d8b5335abf97

    • SHA1

      c07bd38c1db36d413173af12755a0d512ac71ec8

    • SHA256

      9837c79c752713d7405b294e051816c59fcb6e98d1045c25d21414379827b72e

    • SHA512

      010857da0a99e97d534d3fde7e510263a741ec17121bee35790f6185d33dcd3b799fd5c97aaf83e4ad3735d4395f1d3af12608689a1fa9661e0d0a8bb661ea6d

    • SSDEEP

      3072:UtD0uBhYKeZH2Fi1ZcmpWpFg91IxW9KmyFn8eTs8:UxNBhYFZaiFpWDgrIxoKmyxjs

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks