Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
942886e222bbed8c52792e46580245d4_JaffaCakes118
-
Size
224KB
-
Sample
240813-wmzxcsshlk
-
MD5
942886e222bbed8c52792e46580245d4
-
SHA1
2a53d14c21ab7e91cd846cb859fab1f5e5e43216
-
SHA256
bdd9676de55265ac985df2edf91696611b9401c2140ec849060b70beac6b6ead
-
SHA512
4feb2cbd2c308b6f16f73b2d84d245927f6b9b2acb2eb22b158c5b296acd4ae373c72bc1a23933234e8d7efcce5f9960c41a87e5dbedc13f1d6bded6c4fc5fb6
-
SSDEEP
3072:05IIfasIqrgl4iEzjKTF40qVA0KNBxOlDm:05I6zIqrgCHpXA0KZOs
Malware Config
Targets
-
-
Target
942886e222bbed8c52792e46580245d4_JaffaCakes118
-
Size
224KB
-
MD5
942886e222bbed8c52792e46580245d4
-
SHA1
2a53d14c21ab7e91cd846cb859fab1f5e5e43216
-
SHA256
bdd9676de55265ac985df2edf91696611b9401c2140ec849060b70beac6b6ead
-
SHA512
4feb2cbd2c308b6f16f73b2d84d245927f6b9b2acb2eb22b158c5b296acd4ae373c72bc1a23933234e8d7efcce5f9960c41a87e5dbedc13f1d6bded6c4fc5fb6
-
SSDEEP
3072:05IIfasIqrgl4iEzjKTF40qVA0KNBxOlDm:05I6zIqrgCHpXA0KZOs
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2