Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    88b0ca6d8caf15007df264c90e4fdae0_JaffaCakes118

  • Size

    340KB

  • Sample

    240811-c94paawald

  • MD5

    88b0ca6d8caf15007df264c90e4fdae0

  • SHA1

    378dac8d71353f17d35fac3e03eb80ff472d84b0

  • SHA256

    21ad719f177374405df8f4c4ce4252fbbcb38a3b1e4011ed12f7a45260dc3bc0

  • SHA512

    77601ac42690c376b2ac4671bae1c6b39c0b2fa7d377e226f82e9d3ac1c1a74463d7ef5fe33eb2f51e63c7a7b3cd9a5d04e2132ac541f3f103ef738dcfd2f102

  • SSDEEP

    6144:G0PEtTPkAuAfjlJuj3QjgJ6snJZ/RjY07qVyLOyFTzVxh3VAitO8yb8D/3/:G0m3blK36QhuIOyFHxlAaO8ye3/

Malware Config

Targets

    • Target

      88b0ca6d8caf15007df264c90e4fdae0_JaffaCakes118

    • Size

      340KB

    • MD5

      88b0ca6d8caf15007df264c90e4fdae0

    • SHA1

      378dac8d71353f17d35fac3e03eb80ff472d84b0

    • SHA256

      21ad719f177374405df8f4c4ce4252fbbcb38a3b1e4011ed12f7a45260dc3bc0

    • SHA512

      77601ac42690c376b2ac4671bae1c6b39c0b2fa7d377e226f82e9d3ac1c1a74463d7ef5fe33eb2f51e63c7a7b3cd9a5d04e2132ac541f3f103ef738dcfd2f102

    • SSDEEP

      6144:G0PEtTPkAuAfjlJuj3QjgJ6snJZ/RjY07qVyLOyFTzVxh3VAitO8yb8D/3/:G0m3blK36QhuIOyFHxlAaO8ye3/

    • Reads data files stored by FTP clients

      Tries to access configuration files associated with programs like FileZilla.

    • Reads local data of messenger clients

      Infostealers often target stored data of messaging applications, which can include saved credentials and account information.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Unsecured Credentials: Credentials In Files

      Steal credentials from unsecured files.

MITRE ATT&CK Enterprise v15

Tasks