Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
b0fd1c634d7931b943903d9c4c75afad_JaffaCakes118
-
Size
733KB
-
Sample
240820-1ta9ssvgja
-
MD5
b0fd1c634d7931b943903d9c4c75afad
-
SHA1
9f6f985e2616618b1dcd6dfa88eb9896c4e0bc2e
-
SHA256
8b98f2c41e3c37808cd8a0419a475a1e9c47c12609431750dad84aeafd94947a
-
SHA512
c52fd500c5e9c7346116d3e7cb5fff2f3302b8eb8ced547960ff9de11e96656d625143999490f0d1e2b267d0fb3cc82c73b1863d6d8a407310e449c325c75d4e
-
SSDEEP
12288:13Fpj4rBRLukn+zKg2oOR2OQl5KAdmxQDgGeItGBV07XpWZhASRXHYnrmF:1VpUFRUgoOwOY5KAqQlFtWVAqRXHYrmF
Malware Config
Targets
-
-
Target
b0fd1c634d7931b943903d9c4c75afad_JaffaCakes118
-
Size
733KB
-
MD5
b0fd1c634d7931b943903d9c4c75afad
-
SHA1
9f6f985e2616618b1dcd6dfa88eb9896c4e0bc2e
-
SHA256
8b98f2c41e3c37808cd8a0419a475a1e9c47c12609431750dad84aeafd94947a
-
SHA512
c52fd500c5e9c7346116d3e7cb5fff2f3302b8eb8ced547960ff9de11e96656d625143999490f0d1e2b267d0fb3cc82c73b1863d6d8a407310e449c325c75d4e
-
SSDEEP
12288:13Fpj4rBRLukn+zKg2oOR2OQl5KAdmxQDgGeItGBV07XpWZhASRXHYnrmF:1VpUFRUgoOwOY5KAqQlFtWVAqRXHYrmF
Score8/10-
Modifies Windows Firewall
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
MITRE ATT&CK Enterprise v15
Persistence
Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1Privilege Escalation
Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1