Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
b7fc364508eb2f1ebb6cad6048e00045_JaffaCakes118
-
Size
960KB
-
Sample
240822-rrgjcs1hkd
-
MD5
b7fc364508eb2f1ebb6cad6048e00045
-
SHA1
a55db211bdbe036b3dba5fcb206a4fe5248213b0
-
SHA256
4d7a34c27425da94ccc81adfde152beddfe571030daa75897d0f8a1acfad3bb2
-
SHA512
18732ab39e05cacc6db157141efe9ce9f4c32336ad032b3600571846e0c6447a7521fd430f4ede257d80c6f53153436ee7475f27195ffd9be2ae775422070750
-
SSDEEP
12288:8r9Wqow943/Z0iB8Z3XPFf9JEYBGt5RpdUGMV:8xjP43/unPl9eYB82GM
Static task
static1
Behavioral task
behavioral1
Sample
b7fc364508eb2f1ebb6cad6048e00045_JaffaCakes118.exe
Resource
win7-20240705-en
Malware Config
Targets
-
-
Target
b7fc364508eb2f1ebb6cad6048e00045_JaffaCakes118
-
Size
960KB
-
MD5
b7fc364508eb2f1ebb6cad6048e00045
-
SHA1
a55db211bdbe036b3dba5fcb206a4fe5248213b0
-
SHA256
4d7a34c27425da94ccc81adfde152beddfe571030daa75897d0f8a1acfad3bb2
-
SHA512
18732ab39e05cacc6db157141efe9ce9f4c32336ad032b3600571846e0c6447a7521fd430f4ede257d80c6f53153436ee7475f27195ffd9be2ae775422070750
-
SSDEEP
12288:8r9Wqow943/Z0iB8Z3XPFf9JEYBGt5RpdUGMV:8xjP43/unPl9eYB82GM
-
Executes dropped EXE
-
Identifies Wine through registry keys
Wine is a compatibility layer capable of running Windows applications, which can be used as sandboxing environment.
-
Loads dropped DLL
-
Drops file in System32 directory
-