Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
60b6af1df7c87550666073a4fe22d88f_JaffaCakes118
-
Size
561KB
-
Sample
240721-vsac8awcpd
-
MD5
60b6af1df7c87550666073a4fe22d88f
-
SHA1
6af56f0d024dbc837c219b32952fe3ebd1cf4906
-
SHA256
061f99f326a2b7e8b10bd65060410ca4d154360fcd4db9fa0fe455b7ef51b8bb
-
SHA512
769a0c84e49dd20f4f17fd463981e4877371c4997c29b10d24760b9ef46aa7f13e3ba7dfe46b0ef8de337e05f43f7959c43bed44821aba84655384cc528191a1
-
SSDEEP
12288:60QNdbiq97dAGMSlaK3VRg6bLgExGLldfWS+WaMc5XF:60QNdbiq97dAGMMaeRg6YEk7WS+W05X
Static task
static1
Behavioral task
behavioral1
Sample
60b6af1df7c87550666073a4fe22d88f_JaffaCakes118.exe
Resource
win7-20240705-en
Behavioral task
behavioral2
Sample
60b6af1df7c87550666073a4fe22d88f_JaffaCakes118.exe
Resource
win10v2004-20240709-en
Malware Config
Targets
-
-
Target
60b6af1df7c87550666073a4fe22d88f_JaffaCakes118
-
Size
561KB
-
MD5
60b6af1df7c87550666073a4fe22d88f
-
SHA1
6af56f0d024dbc837c219b32952fe3ebd1cf4906
-
SHA256
061f99f326a2b7e8b10bd65060410ca4d154360fcd4db9fa0fe455b7ef51b8bb
-
SHA512
769a0c84e49dd20f4f17fd463981e4877371c4997c29b10d24760b9ef46aa7f13e3ba7dfe46b0ef8de337e05f43f7959c43bed44821aba84655384cc528191a1
-
SSDEEP
12288:60QNdbiq97dAGMSlaK3VRg6bLgExGLldfWS+WaMc5XF:60QNdbiq97dAGMMaeRg6YEk7WS+W05X
Score9/10-
Checks for common network interception software
Looks in the registry for tools like Wireshark or Fiddler commonly used to analyze network activity.
-
Enumerates VirtualBox registry keys
-
Suspicious use of SetThreadContext
-