Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
8605a1a556926842a95ab84eda97af74_JaffaCakes118
-
Size
48KB
-
Sample
240810-pgaxqayfjr
-
MD5
8605a1a556926842a95ab84eda97af74
-
SHA1
670b9eeac6080b26541ede974941fc7032e13c6d
-
SHA256
b396e362c1d32d61fb654c2766025fcb8a86bc26776ad1f478ffb43a4bfc8878
-
SHA512
50b9f2fd804465bcc149174d45c81bdede5a2f7cf98b99cda88b6f1110710acb8a21a01f5f1d7c6e7c4db4e4679a9a2afef6dd2ad52538eee246de49a47f11fb
-
SSDEEP
768:jVhHmMth6A4Uq6y+KkIP8c5+L/xa7JABVS06lyuoNDCktKXjlyoqpkXf:jzHmMthuUq9+Kk48C+QJAuoNgXjlyo6k
Malware Config
Targets
-
-
Target
8605a1a556926842a95ab84eda97af74_JaffaCakes118
-
Size
48KB
-
MD5
8605a1a556926842a95ab84eda97af74
-
SHA1
670b9eeac6080b26541ede974941fc7032e13c6d
-
SHA256
b396e362c1d32d61fb654c2766025fcb8a86bc26776ad1f478ffb43a4bfc8878
-
SHA512
50b9f2fd804465bcc149174d45c81bdede5a2f7cf98b99cda88b6f1110710acb8a21a01f5f1d7c6e7c4db4e4679a9a2afef6dd2ad52538eee246de49a47f11fb
-
SSDEEP
768:jVhHmMth6A4Uq6y+KkIP8c5+L/xa7JABVS06lyuoNDCktKXjlyoqpkXf:jzHmMthuUq9+Kk48C+QJAuoNgXjlyo6k
Score10/10-
UAC bypass
-
Deletes itself
-
Executes dropped EXE
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Adds Run key to start application
-
Checks whether UAC is enabled
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Abuse Elevation Control Mechanism
1Bypass User Account Control
1Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Abuse Elevation Control Mechanism
1Bypass User Account Control
1Impair Defenses
1Disable or Modify Tools
1Modify Registry
4