Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
a9100783ddc9235364df5b67cecdb70b_JaffaCakes118
-
Size
228KB
-
Sample
240819-b12mwszgpr
-
MD5
a9100783ddc9235364df5b67cecdb70b
-
SHA1
b5cc1089f499cb48e5260cde1baeb0f3bf09879f
-
SHA256
4fe8b7ce8153cf816d9ff222bfaed32ae2d21112d29eae657ea9eb141e2406af
-
SHA512
03e026137481c87b942a274d5d249c4b503665869b53f5190e4d9959174461730c06d181e515443582d88e477f3ff7881f9ae852da1bb1b87400f3a7c61f48e8
-
SSDEEP
6144:zQGCAQLvOUkq77vXaH7ylF57M7+9CNauhXKzm4t:kVNXl+GC+9uBKzLt
Behavioral task
behavioral1
Sample
a9100783ddc9235364df5b67cecdb70b_JaffaCakes118.exe
Resource
win7-20240705-en
Behavioral task
behavioral2
Sample
a9100783ddc9235364df5b67cecdb70b_JaffaCakes118.exe
Resource
win10v2004-20240802-en
Malware Config
Targets
-
-
Target
a9100783ddc9235364df5b67cecdb70b_JaffaCakes118
-
Size
228KB
-
MD5
a9100783ddc9235364df5b67cecdb70b
-
SHA1
b5cc1089f499cb48e5260cde1baeb0f3bf09879f
-
SHA256
4fe8b7ce8153cf816d9ff222bfaed32ae2d21112d29eae657ea9eb141e2406af
-
SHA512
03e026137481c87b942a274d5d249c4b503665869b53f5190e4d9959174461730c06d181e515443582d88e477f3ff7881f9ae852da1bb1b87400f3a7c61f48e8
-
SSDEEP
6144:zQGCAQLvOUkq77vXaH7ylF57M7+9CNauhXKzm4t:kVNXl+GC+9uBKzLt
Score7/10-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-
MITRE ATT&CK Enterprise v15
Defense Evasion
Modify Registry
1Pre-OS Boot
1Bootkit
1Subvert Trust Controls
1Install Root Certificate
1