Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
8adf7065d68094ef07aa0db11b17f0d2_JaffaCakes118
-
Size
96KB
-
Sample
240811-snvggszalh
-
MD5
8adf7065d68094ef07aa0db11b17f0d2
-
SHA1
4e2bfb6d1ebc9175db44bb7a1715af6d59c40ea9
-
SHA256
342d93caf217f2963a5d1891ba24f1f36019b330c0a8f50f2ecf5b6ae3d89131
-
SHA512
b5fae43f446ec173450813265825c6f5a783b9916f316a6775036da1f3d17f4e4194b257540d9d658fae5b9ac26769950875788e340fe607e374bd4165f6221b
-
SSDEEP
1536:fhtEg52q49tyVQO8P8ychiwjj3RJNEo/knRzdnynE7RldNEP8lijOe/NIjP:fPE/9elychDzR3Ek65Rldq/CP
Malware Config
Targets
-
-
Target
8adf7065d68094ef07aa0db11b17f0d2_JaffaCakes118
-
Size
96KB
-
MD5
8adf7065d68094ef07aa0db11b17f0d2
-
SHA1
4e2bfb6d1ebc9175db44bb7a1715af6d59c40ea9
-
SHA256
342d93caf217f2963a5d1891ba24f1f36019b330c0a8f50f2ecf5b6ae3d89131
-
SHA512
b5fae43f446ec173450813265825c6f5a783b9916f316a6775036da1f3d17f4e4194b257540d9d658fae5b9ac26769950875788e340fe607e374bd4165f6221b
-
SSDEEP
1536:fhtEg52q49tyVQO8P8ychiwjj3RJNEo/knRzdnynE7RldNEP8lijOe/NIjP:fPE/9elychDzR3Ek65Rldq/CP
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2