Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
af47ef42f44cfb47136b10f5849a14dc_JaffaCakes118
-
Size
89KB
-
Sample
240820-p1afassdld
-
MD5
af47ef42f44cfb47136b10f5849a14dc
-
SHA1
2aedf8902a2fab4eaaa43c4471e503a714d786cc
-
SHA256
5ba16917fc8e971227870bf66f7715645971adb217d2ebbe2bdcca125fc43884
-
SHA512
eaea37158f8610938cdcb9b628420b3309fec18664608ca47607dda496817fcc36ac857b954d08a34c8cee7896d4c32ae893938e58f84c1d81f9f518684a18d7
-
SSDEEP
768:pPY+OBNYIQShTBy1GuqFFSDpcdlKETkZRR//N0cnZj0O6Guz+4NMmOCITdogw:pL6Zs1fqrSDpol1cN0+Zj0/zdW
Static task
static1
Behavioral task
behavioral1
Sample
af47ef42f44cfb47136b10f5849a14dc_JaffaCakes118.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
af47ef42f44cfb47136b10f5849a14dc_JaffaCakes118.exe
Resource
win10v2004-20240802-en
Malware Config
Targets
-
-
Target
af47ef42f44cfb47136b10f5849a14dc_JaffaCakes118
-
Size
89KB
-
MD5
af47ef42f44cfb47136b10f5849a14dc
-
SHA1
2aedf8902a2fab4eaaa43c4471e503a714d786cc
-
SHA256
5ba16917fc8e971227870bf66f7715645971adb217d2ebbe2bdcca125fc43884
-
SHA512
eaea37158f8610938cdcb9b628420b3309fec18664608ca47607dda496817fcc36ac857b954d08a34c8cee7896d4c32ae893938e58f84c1d81f9f518684a18d7
-
SSDEEP
768:pPY+OBNYIQShTBy1GuqFFSDpcdlKETkZRR//N0cnZj0O6Guz+4NMmOCITdogw:pL6Zs1fqrSDpol1cN0+Zj0/zdW
Score6/10-
Maps connected drives based on registry
Disk information is often read in order to detect sandboxing environments.
-
Suspicious use of SetThreadContext
-