Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    b0183caa258ac0244397acdad38abe1d_JaffaCakes118

  • Size

    342KB

  • Sample

    240820-vnrrpsxerm

  • MD5

    b0183caa258ac0244397acdad38abe1d

  • SHA1

    8955d6294e0a81d6f3ae68424fe3594790f310bf

  • SHA256

    7bd76462c43720521211e33793c795d39c8c39dfefb2dab373b2efc93571bcdc

  • SHA512

    069df740f8e8ed19f905c4d37ac6101dfb0736de650f9a676f9c23bb1671119c40b02b93233fc97b066366c75e76e93329628db9b8ab37eb490faec7f068efab

  • SSDEEP

    6144:RDHtMYveIk44ai9PakfDYtlUKS2pf/xYLcu5NC9wXMq0jKI/gUzdx:RiYvDsakbClM2pxYB3CuM/xLdx

Malware Config

Targets

    • Target

      b0183caa258ac0244397acdad38abe1d_JaffaCakes118

    • Size

      342KB

    • MD5

      b0183caa258ac0244397acdad38abe1d

    • SHA1

      8955d6294e0a81d6f3ae68424fe3594790f310bf

    • SHA256

      7bd76462c43720521211e33793c795d39c8c39dfefb2dab373b2efc93571bcdc

    • SHA512

      069df740f8e8ed19f905c4d37ac6101dfb0736de650f9a676f9c23bb1671119c40b02b93233fc97b066366c75e76e93329628db9b8ab37eb490faec7f068efab

    • SSDEEP

      6144:RDHtMYveIk44ai9PakfDYtlUKS2pf/xYLcu5NC9wXMq0jKI/gUzdx:RiYvDsakbClM2pxYB3CuM/xLdx

    • Windows security bypass

    • Disables taskbar notifications via registry modification

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Windows security modification

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks