Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
aacc57208fd7b9b87603a235723f4b54_JaffaCakes118
-
Size
7KB
-
Sample
240819-neb7bs1cqg
-
MD5
aacc57208fd7b9b87603a235723f4b54
-
SHA1
309c371ec4a27b311b489da64f20ea1459cac01b
-
SHA256
ffa9c5cccec7fc60a987156fdfe2de0fecd67483c6993bdb1a461f5b7427d0c0
-
SHA512
6f824b4c5db5994ed983132115056e87a6d001aaf397f4ff7884a711ebca7c4d3ebe05adbf0ae2b48fee60a09abdc37aeb0f7a7054cdadbb4d1372a306ff964c
-
SSDEEP
192:fEFqdt+ulpCYOVOXxkE8EBFY/v5oQaEDV41dMzp:cFqdt+ulZsqgEB6/v5oQa0K1de
Malware Config
Targets
-
-
Target
aacc57208fd7b9b87603a235723f4b54_JaffaCakes118
-
Size
7KB
-
MD5
aacc57208fd7b9b87603a235723f4b54
-
SHA1
309c371ec4a27b311b489da64f20ea1459cac01b
-
SHA256
ffa9c5cccec7fc60a987156fdfe2de0fecd67483c6993bdb1a461f5b7427d0c0
-
SHA512
6f824b4c5db5994ed983132115056e87a6d001aaf397f4ff7884a711ebca7c4d3ebe05adbf0ae2b48fee60a09abdc37aeb0f7a7054cdadbb4d1372a306ff964c
-
SSDEEP
192:fEFqdt+ulpCYOVOXxkE8EBFY/v5oQaEDV41dMzp:cFqdt+ulZsqgEB6/v5oQa0K1de
Score8/10-
Disables Task Manager via registry modification
-
Modifies Windows Firewall
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Adds Run key to start application
-
Drops file in System32 directory
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1