Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    651cdd414355841ed03eae0f42d1dced_JaffaCakes118

  • Size

    315KB

  • Sample

    240722-2skmhssglg

  • MD5

    651cdd414355841ed03eae0f42d1dced

  • SHA1

    21396db1431c035499a38be2b406509269cb3ddd

  • SHA256

    4d86cb8df3fdd4b7642bad94773600690a3ab1f82a01f25fdada03915cf32417

  • SHA512

    f4bae86fab2890de4c3bb416508fbff6478c6daefaebbbe07d01aac6386b7949c3c26245178ff3d9aba070ef59a98891c4cde015be510d21b66d01fe0d43610a

  • SSDEEP

    6144:91OgDPdkBAFZWjadD4sWo5D0HBoRwtpTgqzZyxTuUJ7y5SQBz:91OgLda0uhmGTXd2TuUJ7yrR

Malware Config

Targets

    • Target

      651cdd414355841ed03eae0f42d1dced_JaffaCakes118

    • Size

      315KB

    • MD5

      651cdd414355841ed03eae0f42d1dced

    • SHA1

      21396db1431c035499a38be2b406509269cb3ddd

    • SHA256

      4d86cb8df3fdd4b7642bad94773600690a3ab1f82a01f25fdada03915cf32417

    • SHA512

      f4bae86fab2890de4c3bb416508fbff6478c6daefaebbbe07d01aac6386b7949c3c26245178ff3d9aba070ef59a98891c4cde015be510d21b66d01fe0d43610a

    • SSDEEP

      6144:91OgDPdkBAFZWjadD4sWo5D0HBoRwtpTgqzZyxTuUJ7y5SQBz:91OgLda0uhmGTXd2TuUJ7yrR

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

MITRE ATT&CK Enterprise v15

Tasks