Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    4cf1dd2c77b04d4d01a06d2cda911344_JaffaCakes118

  • Size

    400KB

  • Sample

    240716-fzsqtazaqh

  • MD5

    4cf1dd2c77b04d4d01a06d2cda911344

  • SHA1

    005cb805b6c3722b2dec3d94002a9394eae4e67a

  • SHA256

    ca9c688aa808849dec42f0f38198395b197081402d856be34327dffa4ecb37f2

  • SHA512

    e59762e109eb11835c946e2e88516978d5cfea14f65cb3580b4a097016c6144cd371afb132dc16afee791fdcf71f911feba68d1dff1f65b2eded166908a34a49

  • SSDEEP

    6144:VIOSKYfXPPabijWG89H03CcTSMJM75TEb5V/rZMG5TNhzTxmvhNGoxI2:Vaffn0YCTMK7mV/rZMG5xhXgh/P

Malware Config

Targets

    • Target

      4cf1dd2c77b04d4d01a06d2cda911344_JaffaCakes118

    • Size

      400KB

    • MD5

      4cf1dd2c77b04d4d01a06d2cda911344

    • SHA1

      005cb805b6c3722b2dec3d94002a9394eae4e67a

    • SHA256

      ca9c688aa808849dec42f0f38198395b197081402d856be34327dffa4ecb37f2

    • SHA512

      e59762e109eb11835c946e2e88516978d5cfea14f65cb3580b4a097016c6144cd371afb132dc16afee791fdcf71f911feba68d1dff1f65b2eded166908a34a49

    • SSDEEP

      6144:VIOSKYfXPPabijWG89H03CcTSMJM75TEb5V/rZMG5TNhzTxmvhNGoxI2:Vaffn0YCTMK7mV/rZMG5xhXgh/P

    • Windows security bypass

    • Disables taskbar notifications via registry modification

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Windows security modification

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks