Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
71c029b2837e98fb7d905aafb77e1d3b_JaffaCakes118
-
Size
554KB
-
Sample
240725-3sraqswbkg
-
MD5
71c029b2837e98fb7d905aafb77e1d3b
-
SHA1
d3bc34e884a018e284955803dca2b8bdfeb0ea2b
-
SHA256
3ef4e34138a241ab41fac742ccf74d4fcb931c00f17ead63d5eb908ba806788b
-
SHA512
6ab8781d208632ac7a9c252461a5b33549aed03b5e79ed8eea721aec452bfd544e495f2aeec4b49e7d4091eda258ccd2ee92fa8018a6e4dd1d24565aaecf3f27
-
SSDEEP
12288:C7mwrVCy9ztm9IELoTtAOi+Mg28m/Avaz9:olVC0ztmyEkGOi+P28moc9
Behavioral task
behavioral1
Sample
71c029b2837e98fb7d905aafb77e1d3b_JaffaCakes118.exe
Resource
win7-20240704-en
Malware Config
Targets
-
-
Target
71c029b2837e98fb7d905aafb77e1d3b_JaffaCakes118
-
Size
554KB
-
MD5
71c029b2837e98fb7d905aafb77e1d3b
-
SHA1
d3bc34e884a018e284955803dca2b8bdfeb0ea2b
-
SHA256
3ef4e34138a241ab41fac742ccf74d4fcb931c00f17ead63d5eb908ba806788b
-
SHA512
6ab8781d208632ac7a9c252461a5b33549aed03b5e79ed8eea721aec452bfd544e495f2aeec4b49e7d4091eda258ccd2ee92fa8018a6e4dd1d24565aaecf3f27
-
SSDEEP
12288:C7mwrVCy9ztm9IELoTtAOi+Mg28m/Avaz9:olVC0ztmyEkGOi+P28moc9
-
Checks for common network interception software
Looks in the registry for tools like Wireshark or Fiddler commonly used to analyze network activity.
-
Enumerates VirtualBox registry keys
-
Suspicious use of SetThreadContext
-