Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    5bd5708bcd2fdd5182fc6b059d37cef7_JaffaCakes118

  • Size

    2KB

  • Sample

    240719-n3wkwashra

  • MD5

    5bd5708bcd2fdd5182fc6b059d37cef7

  • SHA1

    bb32c12dafeed58caf42c30a0fb5c692e2f4ae3d

  • SHA256

    c126ecfed12a8d02ae38af3aacf4c1d526a2deed61a07ea6caf3d6af5f8fe257

  • SHA512

    0ead0b6b265d9b4685ee918b8058af8e40021f78b78d670f1b05d99be58e10a0d2809d8a1093e15d7d890ec1b4b75d2f3a0a898ad6cac0b441b4c29963550861

Score
8/10

Malware Config

Targets

    • Target

      5bd5708bcd2fdd5182fc6b059d37cef7_JaffaCakes118

    • Size

      2KB

    • MD5

      5bd5708bcd2fdd5182fc6b059d37cef7

    • SHA1

      bb32c12dafeed58caf42c30a0fb5c692e2f4ae3d

    • SHA256

      c126ecfed12a8d02ae38af3aacf4c1d526a2deed61a07ea6caf3d6af5f8fe257

    • SHA512

      0ead0b6b265d9b4685ee918b8058af8e40021f78b78d670f1b05d99be58e10a0d2809d8a1093e15d7d890ec1b4b75d2f3a0a898ad6cac0b441b4c29963550861

    Score
    8/10
    • Blocklisted process makes network request

    • Disables RegEdit via registry modification

    • Adds Run key to start application

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks