Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    5ef708fcc30c35abbe5338818cc4135c_JaffaCakes118

  • Size

    236KB

  • Sample

    240720-enybgsvhql

  • MD5

    5ef708fcc30c35abbe5338818cc4135c

  • SHA1

    755e97c2980cd3ff6e186d0810eeed5327878487

  • SHA256

    f32eb917ec6fd0c0023c47e09d2208784f1bdb494a1b0005e4b6781dbe1fa3a6

  • SHA512

    f877921c1d896dde34acb0963a64204df991559464e8c36708ac5641c73f98c45a63678775ec74a5515eef576eab373d9284ab6f22714eddc6f06f04363b33a6

  • SSDEEP

    6144:D03XFuM4nLSgTh2IcymPCHWIlm1Fa1asHPncBV3UhpGz:Dc1udnLSg03ymK2Ilm1F4a4k7EnGz

Malware Config

Targets

    • Target

      5ef708fcc30c35abbe5338818cc4135c_JaffaCakes118

    • Size

      236KB

    • MD5

      5ef708fcc30c35abbe5338818cc4135c

    • SHA1

      755e97c2980cd3ff6e186d0810eeed5327878487

    • SHA256

      f32eb917ec6fd0c0023c47e09d2208784f1bdb494a1b0005e4b6781dbe1fa3a6

    • SHA512

      f877921c1d896dde34acb0963a64204df991559464e8c36708ac5641c73f98c45a63678775ec74a5515eef576eab373d9284ab6f22714eddc6f06f04363b33a6

    • SSDEEP

      6144:D03XFuM4nLSgTh2IcymPCHWIlm1Fa1asHPncBV3UhpGz:Dc1udnLSg03ymK2Ilm1F4a4k7EnGz

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

MITRE ATT&CK Enterprise v15

Tasks