Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
5da7edef44bd632085e25c6dea8b1ffe_JaffaCakes118
-
Size
580KB
-
Sample
240719-zv8q1szcnm
-
MD5
5da7edef44bd632085e25c6dea8b1ffe
-
SHA1
96f6c1e93f93f240cf18c1265139da3433dae449
-
SHA256
990ae56392ced57dc4ce9fa40f6986bd53b28caa2e15cd402bf7b4daf2c3c4ae
-
SHA512
96298dab7e6487737bb4cc4e54dbcf7e68f608a92a02cd1b742ddca82dce1b51e610083c76ce11e5af12eb7f404e261a95c953440eb1b58d3ee3f00304bb5999
-
SSDEEP
12288:0WjKsYs1aoIPIzQXahXX5qAlZ0VzYKj86sFt7/QpTx:0C1bcXahTX0pYOUt7a
Static task
static1
Behavioral task
behavioral1
Sample
5da7edef44bd632085e25c6dea8b1ffe_JaffaCakes118.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
5da7edef44bd632085e25c6dea8b1ffe_JaffaCakes118.exe
Resource
win10v2004-20240709-en
Malware Config
Targets
-
-
Target
5da7edef44bd632085e25c6dea8b1ffe_JaffaCakes118
-
Size
580KB
-
MD5
5da7edef44bd632085e25c6dea8b1ffe
-
SHA1
96f6c1e93f93f240cf18c1265139da3433dae449
-
SHA256
990ae56392ced57dc4ce9fa40f6986bd53b28caa2e15cd402bf7b4daf2c3c4ae
-
SHA512
96298dab7e6487737bb4cc4e54dbcf7e68f608a92a02cd1b742ddca82dce1b51e610083c76ce11e5af12eb7f404e261a95c953440eb1b58d3ee3f00304bb5999
-
SSDEEP
12288:0WjKsYs1aoIPIzQXahXX5qAlZ0VzYKj86sFt7/QpTx:0C1bcXahTX0pYOUt7a
Score6/10-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-
Suspicious use of SetThreadContext
-