Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
b86b2f1514089c81f1a83c57206f3774_JaffaCakes118
-
Size
731KB
-
Sample
240822-vhwhpsxhkb
-
MD5
b86b2f1514089c81f1a83c57206f3774
-
SHA1
cd171f46f4fc24e067898b9a24e3ad537c26047a
-
SHA256
1204d7ec8052f3985a67080420f32d8bbdada893340aa15fff05af23509d2a9c
-
SHA512
4ff9bfca3ef6ac80a1446b921573ec673470f87c48887bfa147a3ff7a1c53f7dc3e6424969baf39a317ade2b68bbd2297bd6a991db8606373df7cf0cfeaf51fa
-
SSDEEP
12288:bCpjBdYbmrjpNlARTHHxZ5rCpNmWPDgGeIttwoPR5pWZhAIRXHYnrm6:bCpFKbsGHHf5mpxPlFttwYQRXHYrm6
Malware Config
Targets
-
-
Target
b86b2f1514089c81f1a83c57206f3774_JaffaCakes118
-
Size
731KB
-
MD5
b86b2f1514089c81f1a83c57206f3774
-
SHA1
cd171f46f4fc24e067898b9a24e3ad537c26047a
-
SHA256
1204d7ec8052f3985a67080420f32d8bbdada893340aa15fff05af23509d2a9c
-
SHA512
4ff9bfca3ef6ac80a1446b921573ec673470f87c48887bfa147a3ff7a1c53f7dc3e6424969baf39a317ade2b68bbd2297bd6a991db8606373df7cf0cfeaf51fa
-
SSDEEP
12288:bCpjBdYbmrjpNlARTHHxZ5rCpNmWPDgGeIttwoPR5pWZhAIRXHYnrm6:bCpFKbsGHHf5mpxPlFttwYQRXHYrm6
Score8/10-
Modifies Windows Firewall
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
MITRE ATT&CK Enterprise v15
Persistence
Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1Privilege Escalation
Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1