Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    8a284fb08c14c389e222e728e6804724_JaffaCakes118

  • Size

    462KB

  • Sample

    240811-nd6dsaxbmj

  • MD5

    8a284fb08c14c389e222e728e6804724

  • SHA1

    e0cfb0068e1f10aeda8fe0aae9e33dc19e694989

  • SHA256

    83b6b4e3f30ddc24d66d37f64335dd12ee12eb24935e179a710d7f536805d16d

  • SHA512

    bc85af3b95722d2231497b930f30f808c0411ce0611ec05921dd1fa9f38b049335ac5b8ae20517f639a521ce71db2cadab613d713b6f5211169ab803e13fff43

  • SSDEEP

    12288:lAkrESVsFVbCktrHr/QEoK32eUDWgy0VVl:lbZVs3rdHb0eWW8VVl

Malware Config

Targets

    • Target

      8a284fb08c14c389e222e728e6804724_JaffaCakes118

    • Size

      462KB

    • MD5

      8a284fb08c14c389e222e728e6804724

    • SHA1

      e0cfb0068e1f10aeda8fe0aae9e33dc19e694989

    • SHA256

      83b6b4e3f30ddc24d66d37f64335dd12ee12eb24935e179a710d7f536805d16d

    • SHA512

      bc85af3b95722d2231497b930f30f808c0411ce0611ec05921dd1fa9f38b049335ac5b8ae20517f639a521ce71db2cadab613d713b6f5211169ab803e13fff43

    • SSDEEP

      12288:lAkrESVsFVbCktrHr/QEoK32eUDWgy0VVl:lbZVs3rdHb0eWW8VVl

    • Disables Task Manager via registry modification

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks