Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
6fcdccdb6165e840f34cb0147f0e9535_JaffaCakes118
-
Size
353KB
-
Sample
240725-qxv39svama
-
MD5
6fcdccdb6165e840f34cb0147f0e9535
-
SHA1
ac3901d5e79c55605a67754f0662a591285a6e70
-
SHA256
76cc280d217092eb8bdae8504f14d6e9fcd5fef56887c762b45d03bac8183650
-
SHA512
0090e279af2c0ce4123a88710efdd42aa6b8d4f8de2531bebecd6c64bf0bed74051f3c0295b9db03393e379fc6b27b5063593c2348625768e2da8d1d47f699b1
-
SSDEEP
6144:zDe7lKbsPlMg/yO9TC7d/SoLFjjbVrBZ8yBH:uZPlMtd/SoRjbVrBZ8E
Static task
static1
Behavioral task
behavioral1
Sample
6fcdccdb6165e840f34cb0147f0e9535_JaffaCakes118.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
6fcdccdb6165e840f34cb0147f0e9535_JaffaCakes118.exe
Resource
win10v2004-20240709-en
Malware Config
Targets
-
-
Target
6fcdccdb6165e840f34cb0147f0e9535_JaffaCakes118
-
Size
353KB
-
MD5
6fcdccdb6165e840f34cb0147f0e9535
-
SHA1
ac3901d5e79c55605a67754f0662a591285a6e70
-
SHA256
76cc280d217092eb8bdae8504f14d6e9fcd5fef56887c762b45d03bac8183650
-
SHA512
0090e279af2c0ce4123a88710efdd42aa6b8d4f8de2531bebecd6c64bf0bed74051f3c0295b9db03393e379fc6b27b5063593c2348625768e2da8d1d47f699b1
-
SSDEEP
6144:zDe7lKbsPlMg/yO9TC7d/SoLFjjbVrBZ8yBH:uZPlMtd/SoRjbVrBZ8E
-
Executes dropped EXE
-
Unsecured Credentials: Credentials In Files
Steal credentials from unsecured files.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops file in System32 directory
-