Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    49c3b95bedd3d6cec4342c330c49e05c_JaffaCakes118

  • Size

    393KB

  • Sample

    240715-pkjn2atbrb

  • MD5

    49c3b95bedd3d6cec4342c330c49e05c

  • SHA1

    254f52e1e1ad0a9d28c8f03ccb3885a84576f9be

  • SHA256

    438eb470413519af420b68bb1017ea989d4509d29a75c617dfd9cf8fcf0e17b7

  • SHA512

    d914ab5260f7f0f2a12449dd1da00d3de0315233bcae53d115a10f179563724e4835d3cf801929e362b18fdd234391d20750548741547c2e8959047d4feb8c7a

  • SSDEEP

    12288:kV3KpJI6xj1dV9fJcEXW4OYIb5IiENCaoV8P:OCb1dV9fJhXWGHNco

Malware Config

Targets

    • Target

      49c3b95bedd3d6cec4342c330c49e05c_JaffaCakes118

    • Size

      393KB

    • MD5

      49c3b95bedd3d6cec4342c330c49e05c

    • SHA1

      254f52e1e1ad0a9d28c8f03ccb3885a84576f9be

    • SHA256

      438eb470413519af420b68bb1017ea989d4509d29a75c617dfd9cf8fcf0e17b7

    • SHA512

      d914ab5260f7f0f2a12449dd1da00d3de0315233bcae53d115a10f179563724e4835d3cf801929e362b18fdd234391d20750548741547c2e8959047d4feb8c7a

    • SSDEEP

      12288:kV3KpJI6xj1dV9fJcEXW4OYIb5IiENCaoV8P:OCb1dV9fJhXWGHNco

    • Windows security bypass

    • Disables taskbar notifications via registry modification

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Windows security modification

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks