Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    71a3f29f7526efc9c399e89927a32ab6_JaffaCakes118

  • Size

    263KB

  • Sample

    240725-27rdls1drp

  • MD5

    71a3f29f7526efc9c399e89927a32ab6

  • SHA1

    5f3b8c91113cacd367c303b0e6f2df66545fdf80

  • SHA256

    1a9d19d4c7e9d3502ab36dc147f3b7093247321a2ef530e5f4c57d1a28b37886

  • SHA512

    4de0d67afb093bc4217ee20e0a39718a37c97b9745ef989c25af1c47937838f4f445e3aca85bc4e680641538e3476e5a0e739fdae5b99057cfc21124c581064b

  • SSDEEP

    6144:SMoZb0Bt2qbSNj/DNYX0X9KsJHE9EcrupR70yo+NfH:fobg2qbSNj/DNnV+EcrIR/fH

Malware Config

Targets

    • Target

      71a3f29f7526efc9c399e89927a32ab6_JaffaCakes118

    • Size

      263KB

    • MD5

      71a3f29f7526efc9c399e89927a32ab6

    • SHA1

      5f3b8c91113cacd367c303b0e6f2df66545fdf80

    • SHA256

      1a9d19d4c7e9d3502ab36dc147f3b7093247321a2ef530e5f4c57d1a28b37886

    • SHA512

      4de0d67afb093bc4217ee20e0a39718a37c97b9745ef989c25af1c47937838f4f445e3aca85bc4e680641538e3476e5a0e739fdae5b99057cfc21124c581064b

    • SSDEEP

      6144:SMoZb0Bt2qbSNj/DNYX0X9KsJHE9EcrupR70yo+NfH:fobg2qbSNj/DNnV+EcrIR/fH

    • Server Software Component: Terminal Services DLL

    • Deletes itself

    • Loads dropped DLL

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

MITRE ATT&CK Enterprise v15

Tasks