Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
b48854db5ce721587646a194ed3ecba6_JaffaCakes118
-
Size
205KB
-
Sample
240821-wzxmrstcmb
-
MD5
b48854db5ce721587646a194ed3ecba6
-
SHA1
dcee3f912db91148c0718b58d3faab50899e8b06
-
SHA256
11c722f7ee88487d58bf1bf670ba9b0921a41c749c238dbd4f7b076eba1db23d
-
SHA512
c21805d5c8cc65863b6f537d10b666b06fb34dffe11005247353338eb590402d51a2154659f48bac9687217d1d12c447495df7d3d5118aa99fb418922eda44d7
-
SSDEEP
6144:gKqQGZ33GYS29XS3FsJeYFLJ5c2uc0RWp638RV9M:Pq1Z3S2WoJtuXWp6sdM
Behavioral task
behavioral1
Sample
b48854db5ce721587646a194ed3ecba6_JaffaCakes118.exe
Resource
win7-20240705-en
Behavioral task
behavioral2
Sample
b48854db5ce721587646a194ed3ecba6_JaffaCakes118.exe
Resource
win10v2004-20240802-en
Malware Config
Targets
-
-
Target
b48854db5ce721587646a194ed3ecba6_JaffaCakes118
-
Size
205KB
-
MD5
b48854db5ce721587646a194ed3ecba6
-
SHA1
dcee3f912db91148c0718b58d3faab50899e8b06
-
SHA256
11c722f7ee88487d58bf1bf670ba9b0921a41c749c238dbd4f7b076eba1db23d
-
SHA512
c21805d5c8cc65863b6f537d10b666b06fb34dffe11005247353338eb590402d51a2154659f48bac9687217d1d12c447495df7d3d5118aa99fb418922eda44d7
-
SSDEEP
6144:gKqQGZ33GYS29XS3FsJeYFLJ5c2uc0RWp638RV9M:Pq1Z3S2WoJtuXWp6sdM
Score7/10-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-
MITRE ATT&CK Enterprise v15
Defense Evasion
Modify Registry
1Pre-OS Boot
1Bootkit
1Subvert Trust Controls
1Install Root Certificate
1