Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
4dfa9d648d2c75c17173c1d139d025f2_JaffaCakes118
-
Size
467KB
-
Sample
240716-mt65ksydmr
-
MD5
4dfa9d648d2c75c17173c1d139d025f2
-
SHA1
0c8ee071bea13a8c73f2a3f79a53970b2c6c41e1
-
SHA256
8873257d24d6b65c9864b0f3932a7a64ea765bc4f00382be124b31d0c004ce45
-
SHA512
bd680cc6d6f7fce316621774bfdb471bbcd1aff5999d0d93c749f1fb3269ea531acc082f2681640e049563322b3872f5c8615eed65910dadc2788beff16c628d
-
SSDEEP
6144:wgiDWoeALV3n2mXWi1TkbZ7jO8adEXf8yJrR1V0JPHxuVcnjqiCYmrLV:wrWoeYVmmCZ7aaxt5
Static task
static1
Behavioral task
behavioral1
Sample
4dfa9d648d2c75c17173c1d139d025f2_JaffaCakes118.exe
Resource
win7-20240705-en
Malware Config
Targets
-
-
Target
4dfa9d648d2c75c17173c1d139d025f2_JaffaCakes118
-
Size
467KB
-
MD5
4dfa9d648d2c75c17173c1d139d025f2
-
SHA1
0c8ee071bea13a8c73f2a3f79a53970b2c6c41e1
-
SHA256
8873257d24d6b65c9864b0f3932a7a64ea765bc4f00382be124b31d0c004ce45
-
SHA512
bd680cc6d6f7fce316621774bfdb471bbcd1aff5999d0d93c749f1fb3269ea531acc082f2681640e049563322b3872f5c8615eed65910dadc2788beff16c628d
-
SSDEEP
6144:wgiDWoeALV3n2mXWi1TkbZ7jO8adEXf8yJrR1V0JPHxuVcnjqiCYmrLV:wrWoeYVmmCZ7aaxt5
-
Accesses cryptocurrency files/wallets, possible credential harvesting
-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-