Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
758ed44651a77a27dda48c5169a570d5_JaffaCakes118
-
Size
47KB
-
Sample
240726-y2wjlascrq
-
MD5
758ed44651a77a27dda48c5169a570d5
-
SHA1
c5cece157eaddbf875ed5fa8764ea223fc518aa0
-
SHA256
3330a6feecaf6d03b08315c2e7377e68ce7d12d4d8b28e3abd766033b99cb57f
-
SHA512
753cf8c72fc3440f04d9bb5fddbdd0dc82f9a6eea2fdffe4b70063a5483b271f40a1ff82b3db57bd7ee838ef9e914e1de3bb34bb5fa8e336487826b425b51c13
-
SSDEEP
768:e/pgwi35zpaQbq0quzJ1L4B+rovo21KbNL8mG0o6rudz8va:oOn5dZbf5PBro/1UNnGb6ruVOa
Static task
static1
Behavioral task
behavioral1
Sample
758ed44651a77a27dda48c5169a570d5_JaffaCakes118.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
758ed44651a77a27dda48c5169a570d5_JaffaCakes118.exe
Resource
win10v2004-20240709-en
Malware Config
Targets
-
-
Target
758ed44651a77a27dda48c5169a570d5_JaffaCakes118
-
Size
47KB
-
MD5
758ed44651a77a27dda48c5169a570d5
-
SHA1
c5cece157eaddbf875ed5fa8764ea223fc518aa0
-
SHA256
3330a6feecaf6d03b08315c2e7377e68ce7d12d4d8b28e3abd766033b99cb57f
-
SHA512
753cf8c72fc3440f04d9bb5fddbdd0dc82f9a6eea2fdffe4b70063a5483b271f40a1ff82b3db57bd7ee838ef9e914e1de3bb34bb5fa8e336487826b425b51c13
-
SSDEEP
768:e/pgwi35zpaQbq0quzJ1L4B+rovo21KbNL8mG0o6rudz8va:oOn5dZbf5PBro/1UNnGb6ruVOa
Score8/10-
Boot or Logon Autostart Execution: Active Setup
Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
-
Drops file in Drivers directory
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Drops file in System32 directory
-