Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
881ce8a8b6ed4ca861c4b5f7ebc7f3c2_JaffaCakes118
-
Size
731KB
-
Sample
240810-3h515syapg
-
MD5
881ce8a8b6ed4ca861c4b5f7ebc7f3c2
-
SHA1
7e29e4d24587b569d71eb4e0612e2367f36b458b
-
SHA256
4b9a25beb9dd36da276309a5c688b92b8705bab02ef3114f4612fff9da9a7211
-
SHA512
8c405198095c6873b0efc1c28e9affd17ab2920ab7bcc69ead4cff6e668076caf558adde66eef25a0c519745d7b6b790c2fcaf3d5521e941658aa9f563d06de2
-
SSDEEP
12288:Jaingtd/9iCpVEZxzraxdUdpmGFmjnDgGeIttwoPR5pWZhAIRXHYnrmY:JaigD/ArravUdsGwnlFttwYQRXHYrmY
Malware Config
Targets
-
-
Target
881ce8a8b6ed4ca861c4b5f7ebc7f3c2_JaffaCakes118
-
Size
731KB
-
MD5
881ce8a8b6ed4ca861c4b5f7ebc7f3c2
-
SHA1
7e29e4d24587b569d71eb4e0612e2367f36b458b
-
SHA256
4b9a25beb9dd36da276309a5c688b92b8705bab02ef3114f4612fff9da9a7211
-
SHA512
8c405198095c6873b0efc1c28e9affd17ab2920ab7bcc69ead4cff6e668076caf558adde66eef25a0c519745d7b6b790c2fcaf3d5521e941658aa9f563d06de2
-
SSDEEP
12288:Jaingtd/9iCpVEZxzraxdUdpmGFmjnDgGeIttwoPR5pWZhAIRXHYnrmY:JaigD/ArravUdsGwnlFttwYQRXHYrmY
Score8/10-
Modifies Windows Firewall
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
MITRE ATT&CK Enterprise v15
Persistence
Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1Privilege Escalation
Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1