Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    834e4fb336d864affdd5a03d7a930905_JaffaCakes118

  • Size

    156KB

  • Sample

    240802-gtzslsvckg

  • MD5

    834e4fb336d864affdd5a03d7a930905

  • SHA1

    4a09c7569aa4a3fcc5a862b2a1b795047d8cf7f9

  • SHA256

    312efa97a99740c006036a7771bc29ded76709e61f285cfee5c2f1caf52da694

  • SHA512

    1541fbc193a6765f020c99eb983c03f93258394055a688bbb6b372135bdccb809843169205e38ede2f0b36ebd5ce9aba3b8ee98d155f3ef17f14ff39d2c7e166

  • SSDEEP

    3072:Y6AOL9lqh+NzQ7Ql5YLrPcb+T9loA9wHzWO9Hmlk1njaT:Y6AuVNAQrWcUoA9wT7kkV

Malware Config

Targets

    • Target

      834e4fb336d864affdd5a03d7a930905_JaffaCakes118

    • Size

      156KB

    • MD5

      834e4fb336d864affdd5a03d7a930905

    • SHA1

      4a09c7569aa4a3fcc5a862b2a1b795047d8cf7f9

    • SHA256

      312efa97a99740c006036a7771bc29ded76709e61f285cfee5c2f1caf52da694

    • SHA512

      1541fbc193a6765f020c99eb983c03f93258394055a688bbb6b372135bdccb809843169205e38ede2f0b36ebd5ce9aba3b8ee98d155f3ef17f14ff39d2c7e166

    • SSDEEP

      3072:Y6AOL9lqh+NzQ7Ql5YLrPcb+T9loA9wHzWO9Hmlk1njaT:Y6AuVNAQrWcUoA9wT7kkV

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks