Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
96571b3015f822f85be9c77ddd5e0028_JaffaCakes118
-
Size
90KB
-
Sample
240814-q286pavgqa
-
MD5
96571b3015f822f85be9c77ddd5e0028
-
SHA1
d77188cd3b7192b774c78fc727a6542914b5f280
-
SHA256
461b64d8d61046cf8db276a084dfc2ead87fdffa9cdd7e19a17e5a20209164b7
-
SHA512
f646fb8a62654c116d0a590ab3871020e075e6aff3e31f550253804383f644833b33a82a9a1f19656feaeb4c9716121026cdc95e84fdeb20e6d4f7f732698e66
-
SSDEEP
1536:aeGj+lofu+lgwTYe3u2Wm+HlO7Po98rsVzOi0MlIxHe+8jh1X7e1Q4Z4Mm:oj+lofu+pg2f+MslVzlIx+zh1qq4Zx
Behavioral task
behavioral1
Sample
96571b3015f822f85be9c77ddd5e0028_JaffaCakes118.exe
Resource
win7-20240708-en
Malware Config
Targets
-
-
Target
96571b3015f822f85be9c77ddd5e0028_JaffaCakes118
-
Size
90KB
-
MD5
96571b3015f822f85be9c77ddd5e0028
-
SHA1
d77188cd3b7192b774c78fc727a6542914b5f280
-
SHA256
461b64d8d61046cf8db276a084dfc2ead87fdffa9cdd7e19a17e5a20209164b7
-
SHA512
f646fb8a62654c116d0a590ab3871020e075e6aff3e31f550253804383f644833b33a82a9a1f19656feaeb4c9716121026cdc95e84fdeb20e6d4f7f732698e66
-
SSDEEP
1536:aeGj+lofu+lgwTYe3u2Wm+HlO7Po98rsVzOi0MlIxHe+8jh1X7e1Q4Z4Mm:oj+lofu+pg2f+MslVzlIx+zh1qq4Zx
Score10/10-
Modifies WinLogon for persistence
-
Event Triggered Execution: Image File Execution Options Injection
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1Winlogon Helper DLL
1Event Triggered Execution
1Image File Execution Options Injection
1