Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    6319fba403cf5d1554fa4f344c2af221_JaffaCakes118

  • Size

    1.8MB

  • Sample

    240722-nwr9wawbkg

  • MD5

    6319fba403cf5d1554fa4f344c2af221

  • SHA1

    da5b2d0c75b6e4010d03b467a513203b854972dd

  • SHA256

    966aca0c911a114a970bd05a207a6421b463315c0916f6a5b87141c4c7252084

  • SHA512

    9cf13647dcb9b7200e87fbffb0a130f65abb768a62f336465c157834eab54a5e906882b6f2e53c01859c6c7c35873e0e135cc2f55da18e585b788d39a1c8096f

  • SSDEEP

    49152:SGeqHcpUcmELGROOG4Adl2Dbs7Q5I8RZvI2C+:DexpUFMGQOGZn2yKBRF

Malware Config

Targets

    • Target

      6319fba403cf5d1554fa4f344c2af221_JaffaCakes118

    • Size

      1.8MB

    • MD5

      6319fba403cf5d1554fa4f344c2af221

    • SHA1

      da5b2d0c75b6e4010d03b467a513203b854972dd

    • SHA256

      966aca0c911a114a970bd05a207a6421b463315c0916f6a5b87141c4c7252084

    • SHA512

      9cf13647dcb9b7200e87fbffb0a130f65abb768a62f336465c157834eab54a5e906882b6f2e53c01859c6c7c35873e0e135cc2f55da18e585b788d39a1c8096f

    • SSDEEP

      49152:SGeqHcpUcmELGROOG4Adl2Dbs7Q5I8RZvI2C+:DexpUFMGQOGZn2yKBRF

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks