Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
5bf47ed55ca18de73c445849c97a4a83_JaffaCakes118
-
Size
38KB
-
Sample
240719-ppt1kavbng
-
MD5
5bf47ed55ca18de73c445849c97a4a83
-
SHA1
d5f3ce1425e1bdeb23a55d3c3cf9422b98e6fbf1
-
SHA256
00231c130c23fd1ca67b97a553fb8e1521f140cd23e491f6c9c933a3a9fc6ab9
-
SHA512
6acddc1d095b88489d6613225ebf491c679a7d523d4c2757c604d4fa7795bc9d31b94397a8139abd674914616938dde28bd257ea62a53645a80a0d4a67f9f63f
-
SSDEEP
768:zTfKEPzAb+XSDBY4UprWYz23CzIspM6Ak0anLQ:z7TyVMST3CsxHfanLQ
Static task
static1
Behavioral task
behavioral1
Sample
5bf47ed55ca18de73c445849c97a4a83_JaffaCakes118.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
5bf47ed55ca18de73c445849c97a4a83_JaffaCakes118.exe
Resource
win10v2004-20240709-en
Malware Config
Targets
-
-
Target
5bf47ed55ca18de73c445849c97a4a83_JaffaCakes118
-
Size
38KB
-
MD5
5bf47ed55ca18de73c445849c97a4a83
-
SHA1
d5f3ce1425e1bdeb23a55d3c3cf9422b98e6fbf1
-
SHA256
00231c130c23fd1ca67b97a553fb8e1521f140cd23e491f6c9c933a3a9fc6ab9
-
SHA512
6acddc1d095b88489d6613225ebf491c679a7d523d4c2757c604d4fa7795bc9d31b94397a8139abd674914616938dde28bd257ea62a53645a80a0d4a67f9f63f
-
SSDEEP
768:zTfKEPzAb+XSDBY4UprWYz23CzIspM6Ak0anLQ:z7TyVMST3CsxHfanLQ
Score7/10-
Executes dropped EXE
-
Loads dropped DLL
-
Unexpected DNS network traffic destination
Network traffic to other servers than the configured DNS servers was detected on the DNS port.
-
Suspicious use of SetThreadContext
-