Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
b52ea8a406ba5f8e5cd64ce2ca2c644b_JaffaCakes118
-
Size
126KB
-
Sample
240821-1qmhnasdqg
-
MD5
b52ea8a406ba5f8e5cd64ce2ca2c644b
-
SHA1
74cee93ccbda2ae1e3698bab762fc62d3bd27bff
-
SHA256
88a46cef081716a098196d7fca3a379ae35a1e80c8c79b23aceb287cecb1c8f2
-
SHA512
6f3c1b8289e300b2c77cc1e8fe1edbf0ded9e07b38fdcfa8c34f9c6d90f2b92bf8cd805afd3659fd72d3d43858c09857e19be8e16c1315fe03c22c43f9d9d876
-
SSDEEP
3072:5y7bs3Qn0n6vXu4BrpmD+d5XwY/baIxxj9QWAa7E:5y7OQnA6/rJd5LzaIX9CO
Static task
static1
Behavioral task
behavioral1
Sample
b52ea8a406ba5f8e5cd64ce2ca2c644b_JaffaCakes118.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
b52ea8a406ba5f8e5cd64ce2ca2c644b_JaffaCakes118.exe
Resource
win10v2004-20240802-en
Malware Config
Targets
-
-
Target
b52ea8a406ba5f8e5cd64ce2ca2c644b_JaffaCakes118
-
Size
126KB
-
MD5
b52ea8a406ba5f8e5cd64ce2ca2c644b
-
SHA1
74cee93ccbda2ae1e3698bab762fc62d3bd27bff
-
SHA256
88a46cef081716a098196d7fca3a379ae35a1e80c8c79b23aceb287cecb1c8f2
-
SHA512
6f3c1b8289e300b2c77cc1e8fe1edbf0ded9e07b38fdcfa8c34f9c6d90f2b92bf8cd805afd3659fd72d3d43858c09857e19be8e16c1315fe03c22c43f9d9d876
-
SSDEEP
3072:5y7bs3Qn0n6vXu4BrpmD+d5XwY/baIxxj9QWAa7E:5y7OQnA6/rJd5LzaIX9CO
Score7/10-
Boot or Logon Autostart Execution: Print Processors
Adversaries may abuse print processors to run malicious DLLs during system boot for persistence and/or privilege escalation.
-
Drops file in System32 directory
-