Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
5c282579c4e07e786650900b1794b22b_JaffaCakes118
-
Size
1.3MB
-
Sample
240719-qvxt3stdrq
-
MD5
5c282579c4e07e786650900b1794b22b
-
SHA1
b2d7d1f1f5319b829d2dde80a605a280b9f514b0
-
SHA256
0ba34d3aad32b30372231b93bff38fbf0c431fe852d41638aa8be13f21131c30
-
SHA512
935d1ea73f8c385ac6eb1592b27975e1cc50e1e75bd6ddc65a5d3e68d89358758b8a20268f1b863ed14aae0edf5b97910813a1f66db2df3a458beb061bfc918c
-
SSDEEP
24576:GHtV6cA8sRCfdRB9HJBzyg4WiW87eQpAlrxXxbHtYHcvXk45gs1EFzkP1wgGn:Gy6dRrnifrCAUrxXxpk5s1ek8n
Behavioral task
behavioral1
Sample
5c282579c4e07e786650900b1794b22b_JaffaCakes118.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
5c282579c4e07e786650900b1794b22b_JaffaCakes118.exe
Resource
win10v2004-20240709-en
Malware Config
Targets
-
-
Target
5c282579c4e07e786650900b1794b22b_JaffaCakes118
-
Size
1.3MB
-
MD5
5c282579c4e07e786650900b1794b22b
-
SHA1
b2d7d1f1f5319b829d2dde80a605a280b9f514b0
-
SHA256
0ba34d3aad32b30372231b93bff38fbf0c431fe852d41638aa8be13f21131c30
-
SHA512
935d1ea73f8c385ac6eb1592b27975e1cc50e1e75bd6ddc65a5d3e68d89358758b8a20268f1b863ed14aae0edf5b97910813a1f66db2df3a458beb061bfc918c
-
SSDEEP
24576:GHtV6cA8sRCfdRB9HJBzyg4WiW87eQpAlrxXxbHtYHcvXk45gs1EFzkP1wgGn:Gy6dRrnifrCAUrxXxpk5s1ek8n
Score7/10-
Identifies Wine through registry keys
Wine is a compatibility layer capable of running Windows applications, which can be used as sandboxing environment.
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-
Suspicious use of SetThreadContext
-