Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
b06990caa3626d11c9c0cc59a75924e4_JaffaCakes118
-
Size
786KB
-
Sample
240820-xgfrza1grq
-
MD5
b06990caa3626d11c9c0cc59a75924e4
-
SHA1
a04db85d210ba1afb0bf7b81efbafa66128efa25
-
SHA256
09e8b2b10ed42d306662a4e92f6f8b90994349af01789a50e8d5499b87e45035
-
SHA512
4b38f88877d398bd5eb523538728d3d1ac9c31fcf8259d2476f5538aab8f7c452e8f15b510105078f14ff1cfde9ca8025ade2c31953442aaac11e3c9eea1c02a
-
SSDEEP
12288:oRYgA7YQCDaZYxnczY9u1BGxiLdAtpeLmkSrre3BrpWZhASRXHYnrm9:oRYgA7NzZw9WGELGbeNc0rqRXHYrm9
Malware Config
Targets
-
-
Target
b06990caa3626d11c9c0cc59a75924e4_JaffaCakes118
-
Size
786KB
-
MD5
b06990caa3626d11c9c0cc59a75924e4
-
SHA1
a04db85d210ba1afb0bf7b81efbafa66128efa25
-
SHA256
09e8b2b10ed42d306662a4e92f6f8b90994349af01789a50e8d5499b87e45035
-
SHA512
4b38f88877d398bd5eb523538728d3d1ac9c31fcf8259d2476f5538aab8f7c452e8f15b510105078f14ff1cfde9ca8025ade2c31953442aaac11e3c9eea1c02a
-
SSDEEP
12288:oRYgA7YQCDaZYxnczY9u1BGxiLdAtpeLmkSrre3BrpWZhASRXHYnrm9:oRYgA7NzZw9WGELGbeNc0rqRXHYrm9
Score8/10-
Modifies Windows Firewall
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
MITRE ATT&CK Enterprise v15
Persistence
Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1Privilege Escalation
Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1