Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    b7fc364508eb2f1ebb6cad6048e00045_JaffaCakes118

  • Size

    960KB

  • Sample

    240822-rrgjcs1hkd

  • MD5

    b7fc364508eb2f1ebb6cad6048e00045

  • SHA1

    a55db211bdbe036b3dba5fcb206a4fe5248213b0

  • SHA256

    4d7a34c27425da94ccc81adfde152beddfe571030daa75897d0f8a1acfad3bb2

  • SHA512

    18732ab39e05cacc6db157141efe9ce9f4c32336ad032b3600571846e0c6447a7521fd430f4ede257d80c6f53153436ee7475f27195ffd9be2ae775422070750

  • SSDEEP

    12288:8r9Wqow943/Z0iB8Z3XPFf9JEYBGt5RpdUGMV:8xjP43/unPl9eYB82GM

Score
7/10

Malware Config

Targets

    • Target

      b7fc364508eb2f1ebb6cad6048e00045_JaffaCakes118

    • Size

      960KB

    • MD5

      b7fc364508eb2f1ebb6cad6048e00045

    • SHA1

      a55db211bdbe036b3dba5fcb206a4fe5248213b0

    • SHA256

      4d7a34c27425da94ccc81adfde152beddfe571030daa75897d0f8a1acfad3bb2

    • SHA512

      18732ab39e05cacc6db157141efe9ce9f4c32336ad032b3600571846e0c6447a7521fd430f4ede257d80c6f53153436ee7475f27195ffd9be2ae775422070750

    • SSDEEP

      12288:8r9Wqow943/Z0iB8Z3XPFf9JEYBGt5RpdUGMV:8xjP43/unPl9eYB82GM

    Score
    7/10
    • Executes dropped EXE

    • Identifies Wine through registry keys

      Wine is a compatibility layer capable of running Windows applications, which can be used as sandboxing environment.

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks