Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    b48854db5ce721587646a194ed3ecba6_JaffaCakes118

  • Size

    205KB

  • Sample

    240821-wzxmrstcmb

  • MD5

    b48854db5ce721587646a194ed3ecba6

  • SHA1

    dcee3f912db91148c0718b58d3faab50899e8b06

  • SHA256

    11c722f7ee88487d58bf1bf670ba9b0921a41c749c238dbd4f7b076eba1db23d

  • SHA512

    c21805d5c8cc65863b6f537d10b666b06fb34dffe11005247353338eb590402d51a2154659f48bac9687217d1d12c447495df7d3d5118aa99fb418922eda44d7

  • SSDEEP

    6144:gKqQGZ33GYS29XS3FsJeYFLJ5c2uc0RWp638RV9M:Pq1Z3S2WoJtuXWp6sdM

Malware Config

Targets

    • Target

      b48854db5ce721587646a194ed3ecba6_JaffaCakes118

    • Size

      205KB

    • MD5

      b48854db5ce721587646a194ed3ecba6

    • SHA1

      dcee3f912db91148c0718b58d3faab50899e8b06

    • SHA256

      11c722f7ee88487d58bf1bf670ba9b0921a41c749c238dbd4f7b076eba1db23d

    • SHA512

      c21805d5c8cc65863b6f537d10b666b06fb34dffe11005247353338eb590402d51a2154659f48bac9687217d1d12c447495df7d3d5118aa99fb418922eda44d7

    • SSDEEP

      6144:gKqQGZ33GYS29XS3FsJeYFLJ5c2uc0RWp638RV9M:Pq1Z3S2WoJtuXWp6sdM

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

MITRE ATT&CK Enterprise v15

Tasks