Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    60b6af1df7c87550666073a4fe22d88f_JaffaCakes118

  • Size

    561KB

  • Sample

    240721-vsac8awcpd

  • MD5

    60b6af1df7c87550666073a4fe22d88f

  • SHA1

    6af56f0d024dbc837c219b32952fe3ebd1cf4906

  • SHA256

    061f99f326a2b7e8b10bd65060410ca4d154360fcd4db9fa0fe455b7ef51b8bb

  • SHA512

    769a0c84e49dd20f4f17fd463981e4877371c4997c29b10d24760b9ef46aa7f13e3ba7dfe46b0ef8de337e05f43f7959c43bed44821aba84655384cc528191a1

  • SSDEEP

    12288:60QNdbiq97dAGMSlaK3VRg6bLgExGLldfWS+WaMc5XF:60QNdbiq97dAGMMaeRg6YEk7WS+W05X

Score
9/10

Malware Config

Targets

    • Target

      60b6af1df7c87550666073a4fe22d88f_JaffaCakes118

    • Size

      561KB

    • MD5

      60b6af1df7c87550666073a4fe22d88f

    • SHA1

      6af56f0d024dbc837c219b32952fe3ebd1cf4906

    • SHA256

      061f99f326a2b7e8b10bd65060410ca4d154360fcd4db9fa0fe455b7ef51b8bb

    • SHA512

      769a0c84e49dd20f4f17fd463981e4877371c4997c29b10d24760b9ef46aa7f13e3ba7dfe46b0ef8de337e05f43f7959c43bed44821aba84655384cc528191a1

    • SSDEEP

      12288:60QNdbiq97dAGMSlaK3VRg6bLgExGLldfWS+WaMc5XF:60QNdbiq97dAGMMaeRg6YEk7WS+W05X

    Score
    9/10
    • Checks for common network interception software

      Looks in the registry for tools like Wireshark or Fiddler commonly used to analyze network activity.

    • Enumerates VirtualBox registry keys

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks