Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    734e2147b55939db3335cd9f86eab904_JaffaCakes118

  • Size

    29KB

  • Sample

    240726-kexw9a1ale

  • MD5

    734e2147b55939db3335cd9f86eab904

  • SHA1

    921d6c31dbfbcedb7762dd0b0318fd7d2ff5fde7

  • SHA256

    9e0692e47635c2740e7035aaa22474a41b035614c9ccbfb8800953a3a2ced14d

  • SHA512

    58aec0e7eb501dbfe6f69f8289798f06ceec0141649da80adecacad05f999fa473014774ed0a9d798569b4ca91e2aa3a706cbcb45a98a8fe14356566bd6859d9

  • SSDEEP

    384:FW7nwY0650hP7WgNveh7FAkY0HGtt44QkyWRejYo3dZhRUbCfCgSEcxfGW6WWAI:M7nwYYT4pcr0iUjUbAKEMfCH

Malware Config

Targets

    • Target

      734e2147b55939db3335cd9f86eab904_JaffaCakes118

    • Size

      29KB

    • MD5

      734e2147b55939db3335cd9f86eab904

    • SHA1

      921d6c31dbfbcedb7762dd0b0318fd7d2ff5fde7

    • SHA256

      9e0692e47635c2740e7035aaa22474a41b035614c9ccbfb8800953a3a2ced14d

    • SHA512

      58aec0e7eb501dbfe6f69f8289798f06ceec0141649da80adecacad05f999fa473014774ed0a9d798569b4ca91e2aa3a706cbcb45a98a8fe14356566bd6859d9

    • SSDEEP

      384:FW7nwY0650hP7WgNveh7FAkY0HGtt44QkyWRejYo3dZhRUbCfCgSEcxfGW6WWAI:M7nwYYT4pcr0iUjUbAKEMfCH

    • Event Triggered Execution: Image File Execution Options Injection

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • Indicator Removal: Clear Persistence

      remove IFEO.

MITRE ATT&CK Enterprise v15

Tasks