Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    4e1ea5ee40a44fed76265d4955da5193_JaffaCakes118

  • Size

    471KB

  • Sample

    240716-nmhdbatakb

  • MD5

    4e1ea5ee40a44fed76265d4955da5193

  • SHA1

    c476f04a55d8e0a23299b7a91c4fb2a394876e8d

  • SHA256

    03b9117bd443e07ff64f1f5e6cb580ba8ce3120a8902f7c8f06bb6858c33fb15

  • SHA512

    3c79a70f0c3aa3190a1b94e2bffccd647385fd35052b6383dcab898bcfe912a64d1c8047a9a6e4779b06662572dbdce3072e57a5d0863549aecf975a7690f97a

  • SSDEEP

    6144:tPy2bbpM+16q6HQoGBXVNYbQHMF3oU68P6WcOLw8mkP/4WWMF+NCbWYLn:EmS+1yHYRVNYPE8P6bOLDAxMF+EbvLn

Malware Config

Targets

    • Target

      4e1ea5ee40a44fed76265d4955da5193_JaffaCakes118

    • Size

      471KB

    • MD5

      4e1ea5ee40a44fed76265d4955da5193

    • SHA1

      c476f04a55d8e0a23299b7a91c4fb2a394876e8d

    • SHA256

      03b9117bd443e07ff64f1f5e6cb580ba8ce3120a8902f7c8f06bb6858c33fb15

    • SHA512

      3c79a70f0c3aa3190a1b94e2bffccd647385fd35052b6383dcab898bcfe912a64d1c8047a9a6e4779b06662572dbdce3072e57a5d0863549aecf975a7690f97a

    • SSDEEP

      6144:tPy2bbpM+16q6HQoGBXVNYbQHMF3oU68P6WcOLw8mkP/4WWMF+NCbWYLn:EmS+1yHYRVNYPE8P6bOLDAxMF+EbvLn

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

MITRE ATT&CK Enterprise v15

Tasks