Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    b248150adb9e189a23a4f994152b6d1e_JaffaCakes118

  • Size

    628KB

  • Sample

    240821-gbb9lascna

  • MD5

    b248150adb9e189a23a4f994152b6d1e

  • SHA1

    e3009d31219e8fe124009da30f205094a3e2d6d6

  • SHA256

    ca3863cfd03cad2eb647ec096cd97153387ea2ebe9b125ec6107c2cfc580568f

  • SHA512

    7a5a3cccf4f36ac97dbddb6563b2e8799bdbd7b004933778b8399ac27ac61faa288fcf703bf62071bdae068f0ce03916a84efa03df60768729dc5e1fab61e26f

  • SSDEEP

    12288:kcV8WjGNrx1/rT/Fep3q+Vqw6hTGV7wA5ty8WH3+S6JH8:73GN3/XgJqSq0lI8+yc

Malware Config

Targets

    • Target

      b248150adb9e189a23a4f994152b6d1e_JaffaCakes118

    • Size

      628KB

    • MD5

      b248150adb9e189a23a4f994152b6d1e

    • SHA1

      e3009d31219e8fe124009da30f205094a3e2d6d6

    • SHA256

      ca3863cfd03cad2eb647ec096cd97153387ea2ebe9b125ec6107c2cfc580568f

    • SHA512

      7a5a3cccf4f36ac97dbddb6563b2e8799bdbd7b004933778b8399ac27ac61faa288fcf703bf62071bdae068f0ce03916a84efa03df60768729dc5e1fab61e26f

    • SSDEEP

      12288:kcV8WjGNrx1/rT/Fep3q+Vqw6hTGV7wA5ty8WH3+S6JH8:73GN3/XgJqSq0lI8+yc

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • Identifies Wine through registry keys

      Wine is a compatibility layer capable of running Windows applications, which can be used as sandboxing environment.

    • Themida packer

      Detects Themida, an advanced Windows software protection system.

MITRE ATT&CK Enterprise v15

Tasks