Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
aadf9e1636bad8689d5c500b12fcc20d_JaffaCakes118
-
Size
728KB
-
Sample
240819-ntc26ssbjd
-
MD5
aadf9e1636bad8689d5c500b12fcc20d
-
SHA1
60a88f8a30781d63a936d526c99db6dc0ac879fa
-
SHA256
5bb4b911c9020f1ae35634214d42dfe3c38c69445640b3feeabdd4528290b4e7
-
SHA512
d9a19026d4f073ad0db08f94bd6600c6be6ae704235c3e066cb7cc98f466081ffa2d2a7051995aca3240220af5456c2b94f7093463a8051423fd8450859b7128
-
SSDEEP
12288:lEcF8D2K53tGcAOYYsLN2Z8bbX2/meGDgGeItoEc9GspWZhASRXHYnrmz:lEc8H5fMLN2Kb72rGlFtov9GsqRXHYro
Malware Config
Targets
-
-
Target
aadf9e1636bad8689d5c500b12fcc20d_JaffaCakes118
-
Size
728KB
-
MD5
aadf9e1636bad8689d5c500b12fcc20d
-
SHA1
60a88f8a30781d63a936d526c99db6dc0ac879fa
-
SHA256
5bb4b911c9020f1ae35634214d42dfe3c38c69445640b3feeabdd4528290b4e7
-
SHA512
d9a19026d4f073ad0db08f94bd6600c6be6ae704235c3e066cb7cc98f466081ffa2d2a7051995aca3240220af5456c2b94f7093463a8051423fd8450859b7128
-
SSDEEP
12288:lEcF8D2K53tGcAOYYsLN2Z8bbX2/meGDgGeItoEc9GspWZhASRXHYnrmz:lEc8H5fMLN2Kb72rGlFtov9GsqRXHYro
Score8/10-
Modifies Windows Firewall
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
MITRE ATT&CK Enterprise v15
Persistence
Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1Privilege Escalation
Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1