Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
b6e0c12f8eeb2de15e8ced44e4d99a5b_JaffaCakes118
-
Size
440KB
-
Sample
240822-jn5g1sygkr
-
MD5
b6e0c12f8eeb2de15e8ced44e4d99a5b
-
SHA1
104bcdb5845b83e0d246390024ebf977819d489a
-
SHA256
04a0748cde2e7e634297b79d22d91a4481d2e654fa5f36e070c163c07f7812f9
-
SHA512
18930a4aa2cb52c421cbc0c6e9f15cdc3632f1c2567d36fa11d10d0b925cc18541f214f0a20b6ae7e2078575de8f5987bba2ebde64499afa2d88a36ab83127fe
-
SSDEEP
12288:l3+HwcSjS01Ap0d3/edKD+NufyAp5c/c73:IHwcoSEA8WdtgyEqc7
Malware Config
Targets
-
-
Target
b6e0c12f8eeb2de15e8ced44e4d99a5b_JaffaCakes118
-
Size
440KB
-
MD5
b6e0c12f8eeb2de15e8ced44e4d99a5b
-
SHA1
104bcdb5845b83e0d246390024ebf977819d489a
-
SHA256
04a0748cde2e7e634297b79d22d91a4481d2e654fa5f36e070c163c07f7812f9
-
SHA512
18930a4aa2cb52c421cbc0c6e9f15cdc3632f1c2567d36fa11d10d0b925cc18541f214f0a20b6ae7e2078575de8f5987bba2ebde64499afa2d88a36ab83127fe
-
SSDEEP
12288:l3+HwcSjS01Ap0d3/edKD+NufyAp5c/c73:IHwcoSEA8WdtgyEqc7
Score10/10-
UAC bypass
-
Windows security bypass
-
Disables taskbar notifications via registry modification
-
Windows security modification
-
Adds Run key to start application
-
Checks whether UAC is enabled
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Abuse Elevation Control Mechanism
1Bypass User Account Control
1Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Abuse Elevation Control Mechanism
1Bypass User Account Control
1Impair Defenses
3Disable or Modify Tools
3Modify Registry
5