Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
76d4174d836eea993865f4c2eb70ae8f_JaffaCakes118
-
Size
96KB
-
Sample
240727-dl6peawelf
-
MD5
76d4174d836eea993865f4c2eb70ae8f
-
SHA1
dc1f171aba82828263b927d232db0c67a39ac775
-
SHA256
b70b51f045fd37d9bb8813a1b6d60f5108021938afd6471c8054e8dab68c2d57
-
SHA512
d2be63b45cc0b7811079f19d1b07f8c1a6af9cdc4b7cb588d1b9ef2522f859effd2e9b49398c208d43e80588166ced97a32740991eea365fbf6c64c0e2472afc
-
SSDEEP
1536:PsKEg52K9tyVQO8P8ych+wjj3RJNEo/knRzdnynE7RldNEP8lijOezNIjnZ/u:PzE/Kelych3zR3Ek65RldqzCn5u
Malware Config
Targets
-
-
Target
76d4174d836eea993865f4c2eb70ae8f_JaffaCakes118
-
Size
96KB
-
MD5
76d4174d836eea993865f4c2eb70ae8f
-
SHA1
dc1f171aba82828263b927d232db0c67a39ac775
-
SHA256
b70b51f045fd37d9bb8813a1b6d60f5108021938afd6471c8054e8dab68c2d57
-
SHA512
d2be63b45cc0b7811079f19d1b07f8c1a6af9cdc4b7cb588d1b9ef2522f859effd2e9b49398c208d43e80588166ced97a32740991eea365fbf6c64c0e2472afc
-
SSDEEP
1536:PsKEg52K9tyVQO8P8ych+wjj3RJNEo/knRzdnynE7RldNEP8lijOezNIjnZ/u:PzE/Kelych3zR3Ek65RldqzCn5u
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2