Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    96a946c47a2a45c33b5c3c35f37135a3_JaffaCakes118

  • Size

    244KB

  • Sample

    240814-sv888azcpb

  • MD5

    96a946c47a2a45c33b5c3c35f37135a3

  • SHA1

    625a04b6b108ab83788ebe59fda00aae072c795f

  • SHA256

    83bf916bc390715c122003007b26e60627454fd7bcf5e5360f2a8e4801364029

  • SHA512

    ce05536c2d30cccf9938995091bc51d7f2d3d580a0ef33741878a0c47dfa3f4e4b6198356f565ecbc4925eda7b98234c4e48eeccec238cfde7aaf573f6ac5d87

  • SSDEEP

    3072:oIdcFLEdskgrt05bnwhVh6PTPl6eGQUlta+No:dWjZ0xCVh6R6e6lta+

Malware Config

Targets

    • Target

      96a946c47a2a45c33b5c3c35f37135a3_JaffaCakes118

    • Size

      244KB

    • MD5

      96a946c47a2a45c33b5c3c35f37135a3

    • SHA1

      625a04b6b108ab83788ebe59fda00aae072c795f

    • SHA256

      83bf916bc390715c122003007b26e60627454fd7bcf5e5360f2a8e4801364029

    • SHA512

      ce05536c2d30cccf9938995091bc51d7f2d3d580a0ef33741878a0c47dfa3f4e4b6198356f565ecbc4925eda7b98234c4e48eeccec238cfde7aaf573f6ac5d87

    • SSDEEP

      3072:oIdcFLEdskgrt05bnwhVh6PTPl6eGQUlta+No:dWjZ0xCVh6R6e6lta+

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks