Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    5e8f9d47496d8b32d08178d59fe9d8be_JaffaCakes118

  • Size

    322KB

  • Sample

    240720-b6t51avame

  • MD5

    5e8f9d47496d8b32d08178d59fe9d8be

  • SHA1

    39d3ed32a46902ae480557c2842defa34169813d

  • SHA256

    5bff5903afde2d37f1a099b40d823b40eae3eaf0d6b1273614a55cbcbc3e9ed5

  • SHA512

    384f392b093a2dea8d63fd590aa95354208e2e47c9d4b08eeb53de457681f5c0d8547e878a41473ebf3eb0757d1cf0464356146d14d6f10a5ce96b3492eab628

  • SSDEEP

    6144:PN1hMAwD9WyiQiSJE++Zsu7RqaOVDZN97ZLG50ARZHGdWz47btNoSk:PXGAw5fiLSJEb94VNnC5bND47btNoSk

Malware Config

Targets

    • Target

      5e8f9d47496d8b32d08178d59fe9d8be_JaffaCakes118

    • Size

      322KB

    • MD5

      5e8f9d47496d8b32d08178d59fe9d8be

    • SHA1

      39d3ed32a46902ae480557c2842defa34169813d

    • SHA256

      5bff5903afde2d37f1a099b40d823b40eae3eaf0d6b1273614a55cbcbc3e9ed5

    • SHA512

      384f392b093a2dea8d63fd590aa95354208e2e47c9d4b08eeb53de457681f5c0d8547e878a41473ebf3eb0757d1cf0464356146d14d6f10a5ce96b3492eab628

    • SSDEEP

      6144:PN1hMAwD9WyiQiSJE++Zsu7RqaOVDZN97ZLG50ARZHGdWz47btNoSk:PXGAw5fiLSJEb94VNnC5bND47btNoSk

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

MITRE ATT&CK Enterprise v15

Tasks