Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    4acd0e56eef405eabbb4a564569a271a_JaffaCakes118

  • Size

    12KB

  • Sample

    240715-wnk5laseqr

  • MD5

    4acd0e56eef405eabbb4a564569a271a

  • SHA1

    eadbc3a2deff7309466453d0dc0eb4309207dd95

  • SHA256

    ac4847a294868161b51a036c60b1aba13db69cd65099197026e7487aeab0a386

  • SHA512

    9f8006d131ef97140cfaf82dbf7908377894949b19bcf5c3def0f6ae7846113456664eac15ea4c3f9b630cca4d9b693172d65edd03a7deb34e881b5b86b7bd27

  • SSDEEP

    384:izNVKpUpi24JkaLuR46IsdAKQ8ubGOoWk5:wGH3O6EPIs9OoWI

Score
8/10

Malware Config

Targets

    • Target

      4acd0e56eef405eabbb4a564569a271a_JaffaCakes118

    • Size

      12KB

    • MD5

      4acd0e56eef405eabbb4a564569a271a

    • SHA1

      eadbc3a2deff7309466453d0dc0eb4309207dd95

    • SHA256

      ac4847a294868161b51a036c60b1aba13db69cd65099197026e7487aeab0a386

    • SHA512

      9f8006d131ef97140cfaf82dbf7908377894949b19bcf5c3def0f6ae7846113456664eac15ea4c3f9b630cca4d9b693172d65edd03a7deb34e881b5b86b7bd27

    • SSDEEP

      384:izNVKpUpi24JkaLuR46IsdAKQ8ubGOoWk5:wGH3O6EPIs9OoWI

    Score
    8/10
    • Sets service image path in registry

    • Deletes itself

    • Drops file in System32 directory

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks