Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
95a5b0563f70c61af4b019e3b25cc330_JaffaCakes118
-
Size
224KB
-
Sample
240814-l5yf5s1drj
-
MD5
95a5b0563f70c61af4b019e3b25cc330
-
SHA1
f2784dd20923061ae3603646e19b477bf1d867a0
-
SHA256
cf34176e512d994fe4b8ff5b45f8425dc480b20c876f00ee398d9b24f5061dd0
-
SHA512
8f41e5ea44dc5a6113514e7b115a685222f35f5a9a063eb53637eeb9c29847a50ace80ae2d9e5055508f54bd32b0ad8412127e601099c0fc2f5748d6bc1843e1
-
SSDEEP
6144:MpI3IZIlITl+Cr8qjJQdjjezuwjjjjjjjjjjjjjjjjjjsaLmjjjjjjjjjjjjjjjc:Mrl+Nh
Static task
static1
Behavioral task
behavioral1
Sample
95a5b0563f70c61af4b019e3b25cc330_JaffaCakes118.exe
Resource
win7-20240705-en
Behavioral task
behavioral2
Sample
95a5b0563f70c61af4b019e3b25cc330_JaffaCakes118.exe
Resource
win10v2004-20240802-en
Malware Config
Targets
-
-
Target
95a5b0563f70c61af4b019e3b25cc330_JaffaCakes118
-
Size
224KB
-
MD5
95a5b0563f70c61af4b019e3b25cc330
-
SHA1
f2784dd20923061ae3603646e19b477bf1d867a0
-
SHA256
cf34176e512d994fe4b8ff5b45f8425dc480b20c876f00ee398d9b24f5061dd0
-
SHA512
8f41e5ea44dc5a6113514e7b115a685222f35f5a9a063eb53637eeb9c29847a50ace80ae2d9e5055508f54bd32b0ad8412127e601099c0fc2f5748d6bc1843e1
-
SSDEEP
6144:MpI3IZIlITl+Cr8qjJQdjjezuwjjjjjjjjjjjjjjjjjjsaLmjjjjjjjjjjjjjjjc:Mrl+Nh
Score6/10-
Legitimate hosting services abused for malware hosting/C2
-
Looks up external IP address via web service
Uses a legitimate IP lookup service to find the infected system's external IP.
-