Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    a5f36f4bd449a249562398e766106df2_JaffaCakes118

  • Size

    46KB

  • Sample

    240818-jkz35awdrp

  • MD5

    a5f36f4bd449a249562398e766106df2

  • SHA1

    8f325fd10787fee56651e085bd1c0c393c809663

  • SHA256

    d568c62e8c9f52e03c50b6309815d03f12dbbaba46b948acd769f10aa181070a

  • SHA512

    257ff325f06c886c5aaa4ab957d1125b4613cee0463b64463dd7fd1e1638296e6da5878915b8595b07c1385e458fb4b7ec5b384ccc8769e9ab07d43813414985

  • SSDEEP

    768:VLi0NnqrjIcGA+9H5MQO7BUdLOyOLm/Cb5vTOc74Hpyfogpty2uhNqFeTCL:ViHIcz+j0W2QA5v974JyZuC

Malware Config

Targets

    • Target

      a5f36f4bd449a249562398e766106df2_JaffaCakes118

    • Size

      46KB

    • MD5

      a5f36f4bd449a249562398e766106df2

    • SHA1

      8f325fd10787fee56651e085bd1c0c393c809663

    • SHA256

      d568c62e8c9f52e03c50b6309815d03f12dbbaba46b948acd769f10aa181070a

    • SHA512

      257ff325f06c886c5aaa4ab957d1125b4613cee0463b64463dd7fd1e1638296e6da5878915b8595b07c1385e458fb4b7ec5b384ccc8769e9ab07d43813414985

    • SSDEEP

      768:VLi0NnqrjIcGA+9H5MQO7BUdLOyOLm/Cb5vTOc74Hpyfogpty2uhNqFeTCL:ViHIcz+j0W2QA5v974JyZuC

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks whether UAC is enabled

    • Drops desktop.ini file(s)

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

MITRE ATT&CK Enterprise v15

Tasks