Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    4ca0568c45b6728205cbd6a141bc0766_JaffaCakes118

  • Size

    8.9MB

  • Sample

    240716-d1vwfswbkb

  • MD5

    4ca0568c45b6728205cbd6a141bc0766

  • SHA1

    0559c617a56c53d0eb5d330c40637201e0ee14a8

  • SHA256

    5a598a16e3ec012a93d476a6106f12114214364b72ec4fecdfb1aef91b4fa766

  • SHA512

    8292742532e0c8ee83161eb1ab406f3196c5c6d9f4e3f2a581aab5a7b483893c86dee7714d370599971020f8d2f31043002b00b9bce3bb3481f6d184192026cd

  • SSDEEP

    196608:NTv5bXsGRL23ySvWhCfPyFSIKoeSjIg6/Vrx6HCdsh17:hhXsuLBpjKI0tNGCdCR

Malware Config

Targets

    • Target

      4ca0568c45b6728205cbd6a141bc0766_JaffaCakes118

    • Size

      8.9MB

    • MD5

      4ca0568c45b6728205cbd6a141bc0766

    • SHA1

      0559c617a56c53d0eb5d330c40637201e0ee14a8

    • SHA256

      5a598a16e3ec012a93d476a6106f12114214364b72ec4fecdfb1aef91b4fa766

    • SHA512

      8292742532e0c8ee83161eb1ab406f3196c5c6d9f4e3f2a581aab5a7b483893c86dee7714d370599971020f8d2f31043002b00b9bce3bb3481f6d184192026cd

    • SSDEEP

      196608:NTv5bXsGRL23ySvWhCfPyFSIKoeSjIg6/Vrx6HCdsh17:hhXsuLBpjKI0tNGCdCR

    • Checks if the Android device is rooted.

    • Checks Android system properties for emulator presence.

    • Queries information about running processes on the device

      Application may abuse the framework's APIs to collect information about running processes on the device.

    • Queries the phone number (MSISDN for GSM devices)

    • Domain associated with commercial stalkerware software, includes indicators from echap.eu.org

    • Queries information about active data network

    • Queries information about the current Wi-Fi connection

      Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

    • Queries the mobile country code (MCC)

MITRE ATT&CK Mobile v15

Tasks