Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    af73b44525065a11f3f13e9682788617_JaffaCakes118

  • Size

    52KB

  • Sample

    240820-qzg97aydkq

  • MD5

    af73b44525065a11f3f13e9682788617

  • SHA1

    04a2be79863ff0af82879b23d6a11dea6d43ca55

  • SHA256

    45460745fe79f706f5976da062c2bb7c3c012fccc7fac4f7cfa9266d978af6e2

  • SHA512

    1b4620581ad8a7c326d57ae217529fadbe4f67333da331e79f3f05f7270b876fd5885287980e2826223629abed46dd3e924288bd8dfb7fabc977c750a3003097

  • SSDEEP

    1536:s9Z3KcR4mjD9r8226+cnwWWwqWI6CkzY4oj3U:sr3KcWmjRrzSXWWbWIWZoj3U

Malware Config

Targets

    • Target

      af73b44525065a11f3f13e9682788617_JaffaCakes118

    • Size

      52KB

    • MD5

      af73b44525065a11f3f13e9682788617

    • SHA1

      04a2be79863ff0af82879b23d6a11dea6d43ca55

    • SHA256

      45460745fe79f706f5976da062c2bb7c3c012fccc7fac4f7cfa9266d978af6e2

    • SHA512

      1b4620581ad8a7c326d57ae217529fadbe4f67333da331e79f3f05f7270b876fd5885287980e2826223629abed46dd3e924288bd8dfb7fabc977c750a3003097

    • SSDEEP

      1536:s9Z3KcR4mjD9r8226+cnwWWwqWI6CkzY4oj3U:sr3KcWmjRrzSXWWbWIWZoj3U

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks