Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
667ad1c2ef2a54e294456ac0eb79e590_JaffaCakes118
-
Size
514KB
-
Sample
240723-g8r2ba1hrg
-
MD5
667ad1c2ef2a54e294456ac0eb79e590
-
SHA1
cac99931df045ee4bc6cc940a5ab1642dcfdf84e
-
SHA256
26578789913ef8981f385b1129df0c8c792344d519912d028a3255c76c549240
-
SHA512
bba183aabb22f20ced7c9cb07d4eb0d3beb878b00d82ab473c59ba64a48c47e964539ef12990a96d25586297c983cfcdc5e26a9d55cf8fc251ce6c2a8ee30868
-
SSDEEP
6144:st9sTEcfGHPh9JSBu/r9aQ1nYBF45HH+tjgYW6kysx96M:s6DfGJ94ByYQ1GFIH+2fxoM
Static task
static1
Behavioral task
behavioral1
Sample
667ad1c2ef2a54e294456ac0eb79e590_JaffaCakes118.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
667ad1c2ef2a54e294456ac0eb79e590_JaffaCakes118.exe
Resource
win10v2004-20240709-en
Malware Config
Targets
-
-
Target
667ad1c2ef2a54e294456ac0eb79e590_JaffaCakes118
-
Size
514KB
-
MD5
667ad1c2ef2a54e294456ac0eb79e590
-
SHA1
cac99931df045ee4bc6cc940a5ab1642dcfdf84e
-
SHA256
26578789913ef8981f385b1129df0c8c792344d519912d028a3255c76c549240
-
SHA512
bba183aabb22f20ced7c9cb07d4eb0d3beb878b00d82ab473c59ba64a48c47e964539ef12990a96d25586297c983cfcdc5e26a9d55cf8fc251ce6c2a8ee30868
-
SSDEEP
6144:st9sTEcfGHPh9JSBu/r9aQ1nYBF45HH+tjgYW6kysx96M:s6DfGJ94ByYQ1GFIH+2fxoM
Score7/10-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Suspicious use of SetThreadContext
-