Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    0004ddbe9e2aedace38df6e89ece4bc3_JaffaCakes118

  • Size

    318KB

  • Sample

    240727-yv2f9syera

  • MD5

    0004ddbe9e2aedace38df6e89ece4bc3

  • SHA1

    a34c02e33e8e813ef90e0a42f105fc75dec46585

  • SHA256

    d7f1d68d2201628633dca4928411d6449c78b04f089c9054d006bb99216bd4f2

  • SHA512

    3726ec7222a8a9cdc1dd1ccd441644d72efda4d99f6a9aa1bb6b32e9cde9fbc085c86cf3e33150e9c2fc6314cbe0ec40980b8a1d0122914953cafc297bcc33ff

  • SSDEEP

    6144:Xo/BHng5HaVG4G/1z+QVMbg1do/BHng5HaI:4ZgaYiZgaI

Malware Config

Targets

    • Target

      0004ddbe9e2aedace38df6e89ece4bc3_JaffaCakes118

    • Size

      318KB

    • MD5

      0004ddbe9e2aedace38df6e89ece4bc3

    • SHA1

      a34c02e33e8e813ef90e0a42f105fc75dec46585

    • SHA256

      d7f1d68d2201628633dca4928411d6449c78b04f089c9054d006bb99216bd4f2

    • SHA512

      3726ec7222a8a9cdc1dd1ccd441644d72efda4d99f6a9aa1bb6b32e9cde9fbc085c86cf3e33150e9c2fc6314cbe0ec40980b8a1d0122914953cafc297bcc33ff

    • SSDEEP

      6144:Xo/BHng5HaVG4G/1z+QVMbg1do/BHng5HaI:4ZgaYiZgaI

    • Vobfus

      A widespread worm which spreads via network drives and removable media.

    • Adds policy Run key to start application

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks