Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
a01064cf860e53f716480af99dddf7f8_JaffaCakes118
-
Size
728KB
-
Sample
240816-1ny4nsygqb
-
MD5
a01064cf860e53f716480af99dddf7f8
-
SHA1
aac6d06b5029f9f1548dafdc884c6f54758bd1de
-
SHA256
dc681fab84b5c3ab483ce8ca0512084f8a77f50b79aa953e39749768456f8efd
-
SHA512
ff2c16d0e5fe21c56bc708500181046996f7ce62dd395bad454f3577fb24f3c7a52448850a6d2591da33d8313313a861cb743472e0d424d01a89eb1893c55b8b
-
SSDEEP
12288:lEcF8D2K53tGcAOYYsLN2Z8bbXG/meGDgGeItoEc9GspWZhASRXHYnrms:lEc8H5fMLN2Kb7GrGlFtov9GsqRXHYr7
Malware Config
Targets
-
-
Target
a01064cf860e53f716480af99dddf7f8_JaffaCakes118
-
Size
728KB
-
MD5
a01064cf860e53f716480af99dddf7f8
-
SHA1
aac6d06b5029f9f1548dafdc884c6f54758bd1de
-
SHA256
dc681fab84b5c3ab483ce8ca0512084f8a77f50b79aa953e39749768456f8efd
-
SHA512
ff2c16d0e5fe21c56bc708500181046996f7ce62dd395bad454f3577fb24f3c7a52448850a6d2591da33d8313313a861cb743472e0d424d01a89eb1893c55b8b
-
SSDEEP
12288:lEcF8D2K53tGcAOYYsLN2Z8bbXG/meGDgGeItoEc9GspWZhASRXHYnrms:lEc8H5fMLN2Kb7GrGlFtov9GsqRXHYr7
Score8/10-
Modifies Windows Firewall
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
MITRE ATT&CK Enterprise v15
Persistence
Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1Privilege Escalation
Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1