Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
76939e05a0d64d49d445975b4777bf0b_JaffaCakes118
-
Size
68KB
-
Sample
240727-b14ggs1frd
-
MD5
76939e05a0d64d49d445975b4777bf0b
-
SHA1
904b68d98907892e4ae926047673d25c1cdd3c34
-
SHA256
6ff0c5545c00f982eb7c762d85bd556226c5cdeb790795e02ae1e0e61c97e831
-
SHA512
af0fe4e67fd94c025c19ab0ad7a09685d0376b1d0173db7557d9a545caf1ca11a8ea12cb8ac3795f9c05e3078ddcd89b9eed8d985ae633f575d654c96ebac0cc
-
SSDEEP
768:UcoliTd66Al+qOQSgFrhKo//WomvdfQXwYt1IEDIefZsK:ToIxJAcqOK3qowgnt1d
Malware Config
Targets
-
-
Target
76939e05a0d64d49d445975b4777bf0b_JaffaCakes118
-
Size
68KB
-
MD5
76939e05a0d64d49d445975b4777bf0b
-
SHA1
904b68d98907892e4ae926047673d25c1cdd3c34
-
SHA256
6ff0c5545c00f982eb7c762d85bd556226c5cdeb790795e02ae1e0e61c97e831
-
SHA512
af0fe4e67fd94c025c19ab0ad7a09685d0376b1d0173db7557d9a545caf1ca11a8ea12cb8ac3795f9c05e3078ddcd89b9eed8d985ae633f575d654c96ebac0cc
-
SSDEEP
768:UcoliTd66Al+qOQSgFrhKo//WomvdfQXwYt1IEDIefZsK:ToIxJAcqOK3qowgnt1d
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2