Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
7411d61e4a87fa69c22e010fa3b4cc70_JaffaCakes118
-
Size
649KB
-
Sample
240726-prd25a1fqb
-
MD5
7411d61e4a87fa69c22e010fa3b4cc70
-
SHA1
60f03149a300810d6e00f36aa223c23505aa2cd1
-
SHA256
e270ca84eff5f2885d76bba6fdfc79e22c7cab5b4d7b0707422e1a0416276cbc
-
SHA512
1ebe77a8c42219a3ba18ecae8a69084737cd2c6d78205db70184cc6174e71f59b1f080c25a04781db98d7d47e4cea65983e0f29718f042c29e73cf665e01216e
-
SSDEEP
12288:X2KXu1WZZ/5y3In6RNIXR7QuRq4eLh0Hou+WXhqE9pZoc8rZl5SwFeb8:X2xAZZxpAY7cJLKIdE9pd8rZQb
Static task
static1
Behavioral task
behavioral1
Sample
7411d61e4a87fa69c22e010fa3b4cc70_JaffaCakes118.dll
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
7411d61e4a87fa69c22e010fa3b4cc70_JaffaCakes118.dll
Resource
win10v2004-20240709-en
Malware Config
Targets
-
-
Target
7411d61e4a87fa69c22e010fa3b4cc70_JaffaCakes118
-
Size
649KB
-
MD5
7411d61e4a87fa69c22e010fa3b4cc70
-
SHA1
60f03149a300810d6e00f36aa223c23505aa2cd1
-
SHA256
e270ca84eff5f2885d76bba6fdfc79e22c7cab5b4d7b0707422e1a0416276cbc
-
SHA512
1ebe77a8c42219a3ba18ecae8a69084737cd2c6d78205db70184cc6174e71f59b1f080c25a04781db98d7d47e4cea65983e0f29718f042c29e73cf665e01216e
-
SSDEEP
12288:X2KXu1WZZ/5y3In6RNIXR7QuRq4eLh0Hou+WXhqE9pZoc8rZl5SwFeb8:X2xAZZxpAY7cJLKIdE9pd8rZQb
Score6/10-
Adds Run key to start application
-
Maps connected drives based on registry
Disk information is often read in order to detect sandboxing environments.
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Browser Extensions
1Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1