Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
b92eb68a2564c5ef1c7648fccd3d91cf_JaffaCakes118
-
Size
100KB
-
Sample
240822-z5z7ma1cjq
-
MD5
b92eb68a2564c5ef1c7648fccd3d91cf
-
SHA1
9c93a556daf1bfdf2a0ec61a1d2d601d34110b43
-
SHA256
5ab843e1082f403cfbb0b475be27653ece60a161d5ea3b041cf4ad89993676f0
-
SHA512
d84deb29e4f92c4434e2f34f4b241faf0fd5fceb1eef8ab44111ae4598d6e922403180bcded99534be666482d61007153e28700f7aef0721e43ce1bd4ab48c34
-
SSDEEP
1536:bUlPzJp2H/f2WKihA1NVRKDbiwCFpKmi7UuTHM0mno+cJlId:bGg/OWoIDdCSZ4uTSnohJlId
Static task
static1
Behavioral task
behavioral1
Sample
b92eb68a2564c5ef1c7648fccd3d91cf_JaffaCakes118.exe
Resource
win7-20240705-en
Behavioral task
behavioral2
Sample
b92eb68a2564c5ef1c7648fccd3d91cf_JaffaCakes118.exe
Resource
win10v2004-20240802-en
Malware Config
Targets
-
-
Target
b92eb68a2564c5ef1c7648fccd3d91cf_JaffaCakes118
-
Size
100KB
-
MD5
b92eb68a2564c5ef1c7648fccd3d91cf
-
SHA1
9c93a556daf1bfdf2a0ec61a1d2d601d34110b43
-
SHA256
5ab843e1082f403cfbb0b475be27653ece60a161d5ea3b041cf4ad89993676f0
-
SHA512
d84deb29e4f92c4434e2f34f4b241faf0fd5fceb1eef8ab44111ae4598d6e922403180bcded99534be666482d61007153e28700f7aef0721e43ce1bd4ab48c34
-
SSDEEP
1536:bUlPzJp2H/f2WKihA1NVRKDbiwCFpKmi7UuTHM0mno+cJlId:bGg/OWoIDdCSZ4uTSnohJlId
Score8/10-
Event Triggered Execution: AppInit DLLs
Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.
-
Drops file in System32 directory
-