Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    b94438b1327fb9c79d35acd2f8b248bb_JaffaCakes118

  • Size

    72KB

  • Sample

    240822-1mryzasbll

  • MD5

    b94438b1327fb9c79d35acd2f8b248bb

  • SHA1

    5167019662e631d3f35bc967fdf1d9d08928cc78

  • SHA256

    ff617aa42d285c950b0282c301726302f3916ce76d37d1436058e5462539f361

  • SHA512

    6adebe24e30eaf15336bc5d58a0988baaf536ecf64dacb1983494f7dfb2aaae8fddb965095d66b76dd34eda5841fa8c2e7ff6714cef1c6c0012f15f94334151c

  • SSDEEP

    1536:pgxBd7BUAyxtLDgxNLCntfblILcVAhzp/BYU:swLD89CdbuLw6zp/d

Malware Config

Targets

    • Target

      b94438b1327fb9c79d35acd2f8b248bb_JaffaCakes118

    • Size

      72KB

    • MD5

      b94438b1327fb9c79d35acd2f8b248bb

    • SHA1

      5167019662e631d3f35bc967fdf1d9d08928cc78

    • SHA256

      ff617aa42d285c950b0282c301726302f3916ce76d37d1436058e5462539f361

    • SHA512

      6adebe24e30eaf15336bc5d58a0988baaf536ecf64dacb1983494f7dfb2aaae8fddb965095d66b76dd34eda5841fa8c2e7ff6714cef1c6c0012f15f94334151c

    • SSDEEP

      1536:pgxBd7BUAyxtLDgxNLCntfblILcVAhzp/BYU:swLD89CdbuLw6zp/d

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Checks whether UAC is enabled

MITRE ATT&CK Enterprise v15

Tasks