Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
b4895c0d8762cc356eb71f2892e684d3_JaffaCakes118
-
Size
205KB
-
Sample
240821-w1tmhaxckp
-
MD5
b4895c0d8762cc356eb71f2892e684d3
-
SHA1
885f83b5b7e3645e689d6d9f70b631cbc0ff6367
-
SHA256
d2247b13ecd9b16b287c4f2e7c0120b73972cfb2245259520c27b4c8d408b5ed
-
SHA512
3096624630334aeb145a917368c2f2fc4f68a3013b45131a3f033862a2a546b99f07b7af635f71410c17e59ded854749ea800541e42da0b1361999e6dc7d2b87
-
SSDEEP
3072:3T77p21yY+vazvXiT+1U03/kCa+33RS6mi1eau+6v4pd5c+bXh8x+N2M9uAvDJ:N2XZrdy08oRlMau+24pZbx++sMUK
Behavioral task
behavioral1
Sample
b4895c0d8762cc356eb71f2892e684d3_JaffaCakes118.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
b4895c0d8762cc356eb71f2892e684d3_JaffaCakes118.exe
Resource
win10v2004-20240802-en
Malware Config
Targets
-
-
Target
b4895c0d8762cc356eb71f2892e684d3_JaffaCakes118
-
Size
205KB
-
MD5
b4895c0d8762cc356eb71f2892e684d3
-
SHA1
885f83b5b7e3645e689d6d9f70b631cbc0ff6367
-
SHA256
d2247b13ecd9b16b287c4f2e7c0120b73972cfb2245259520c27b4c8d408b5ed
-
SHA512
3096624630334aeb145a917368c2f2fc4f68a3013b45131a3f033862a2a546b99f07b7af635f71410c17e59ded854749ea800541e42da0b1361999e6dc7d2b87
-
SSDEEP
3072:3T77p21yY+vazvXiT+1U03/kCa+33RS6mi1eau+6v4pd5c+bXh8x+N2M9uAvDJ:N2XZrdy08oRlMau+24pZbx++sMUK
Score7/10-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-
MITRE ATT&CK Enterprise v15
Defense Evasion
Modify Registry
1Pre-OS Boot
1Bootkit
1Subvert Trust Controls
1Install Root Certificate
1