Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    b8caabee63a6d72483b43bdbcf1a7cdf_JaffaCakes118

  • Size

    11KB

  • Sample

    240822-xtwnyswanl

  • MD5

    b8caabee63a6d72483b43bdbcf1a7cdf

  • SHA1

    3191677755990183c06da8f8c4b484eb9f5b0297

  • SHA256

    a446e51d8195dc2b80af24830710d45081cfd6446108245f798f6875e3579165

  • SHA512

    5add13234b7b7b6c674e238f8e9a7be6cd190dc9368182934fadbd3227548603719d3cd778a5465473b2fbcf486893ec9f58b5352f0ada42a7a420ad3774bed4

  • SSDEEP

    192:X04MI5KLKb434No3CCJWSgtJeqq+ML/0tUECgr3MPrqxwgKs278aV:uI5KL/4NoLYSg3eiq+9Cgr3MPWmgKz7t

Malware Config

Targets

    • Target

      b8caabee63a6d72483b43bdbcf1a7cdf_JaffaCakes118

    • Size

      11KB

    • MD5

      b8caabee63a6d72483b43bdbcf1a7cdf

    • SHA1

      3191677755990183c06da8f8c4b484eb9f5b0297

    • SHA256

      a446e51d8195dc2b80af24830710d45081cfd6446108245f798f6875e3579165

    • SHA512

      5add13234b7b7b6c674e238f8e9a7be6cd190dc9368182934fadbd3227548603719d3cd778a5465473b2fbcf486893ec9f58b5352f0ada42a7a420ad3774bed4

    • SSDEEP

      192:X04MI5KLKb434No3CCJWSgtJeqq+ML/0tUECgr3MPrqxwgKs278aV:uI5KL/4NoLYSg3eiq+9Cgr3MPWmgKz7t

    • Drops file in Drivers directory

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

    • Indicator Removal: File Deletion

      Adversaries may delete files left behind by the actions of their intrusion activity.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks