Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    037343a8f193be913c3e107f53ff7243_JaffaCakes118

  • Size

    16KB

  • Sample

    240728-amyteazdqa

  • MD5

    037343a8f193be913c3e107f53ff7243

  • SHA1

    51047b8dcb80d7fc3b59f37516891f675c01742f

  • SHA256

    a11c983fc59d2c85865f39d379f04c4f6ed6a7f1b082fd95da52e5547c012e2d

  • SHA512

    0dca372652a302688ef8ada9203fcf4e8f2ff0056d969133bd1d3c13faae208eb9dedf8c6eb0f2c11f07dec2a9b7292a4a7f5977ce87acb5d8db5b89c0ecec9c

  • SSDEEP

    384:xLOTSoMaHAhzQYVu1TY7gKJEmizmzCaF1FY:SSagh0Qu1UkKE7AF

Malware Config

Targets

    • Target

      037343a8f193be913c3e107f53ff7243_JaffaCakes118

    • Size

      16KB

    • MD5

      037343a8f193be913c3e107f53ff7243

    • SHA1

      51047b8dcb80d7fc3b59f37516891f675c01742f

    • SHA256

      a11c983fc59d2c85865f39d379f04c4f6ed6a7f1b082fd95da52e5547c012e2d

    • SHA512

      0dca372652a302688ef8ada9203fcf4e8f2ff0056d969133bd1d3c13faae208eb9dedf8c6eb0f2c11f07dec2a9b7292a4a7f5977ce87acb5d8db5b89c0ecec9c

    • SSDEEP

      384:xLOTSoMaHAhzQYVu1TY7gKJEmizmzCaF1FY:SSagh0Qu1UkKE7AF

    • Adds policy Run key to start application

    • Deletes itself

    • Maps connected drives based on registry

      Disk information is often read in order to detect sandboxing environments.

MITRE ATT&CK Enterprise v15

Tasks