Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    68642635fcc2b649edaf5e02ce5cf872_JaffaCakes118

  • Size

    136KB

  • Sample

    240723-t97vdazcjn

  • MD5

    68642635fcc2b649edaf5e02ce5cf872

  • SHA1

    8d82cf42e912d745e1d165582c60abf9dff1fefa

  • SHA256

    fc1e95a63a7c5a8857abad156f4b591790c594e85cd7330b2b251d351777a197

  • SHA512

    b35e21adccefbe610104462e9342fc0c298022b5831c743980cf92f834c783141412d30d2343df036b4ad38055833a3d9e5d1aca8ae95d221faa4ce178a95c8d

  • SSDEEP

    1536:Iptm2lT9jN2QFOV9Y1rIESY5G9dPoT9/dexf0/Rsmd:UM2DR2QFO3CEESYwoT9lpSmd

Malware Config

Targets

    • Target

      68642635fcc2b649edaf5e02ce5cf872_JaffaCakes118

    • Size

      136KB

    • MD5

      68642635fcc2b649edaf5e02ce5cf872

    • SHA1

      8d82cf42e912d745e1d165582c60abf9dff1fefa

    • SHA256

      fc1e95a63a7c5a8857abad156f4b591790c594e85cd7330b2b251d351777a197

    • SHA512

      b35e21adccefbe610104462e9342fc0c298022b5831c743980cf92f834c783141412d30d2343df036b4ad38055833a3d9e5d1aca8ae95d221faa4ce178a95c8d

    • SSDEEP

      1536:Iptm2lT9jN2QFOV9Y1rIESY5G9dPoT9/dexf0/Rsmd:UM2DR2QFO3CEESYwoT9lpSmd

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks