Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    ba4e976af6663bff40803711fd89230a_JaffaCakes118

  • Size

    461KB

  • Sample

    240823-esdsmsvbre

  • MD5

    ba4e976af6663bff40803711fd89230a

  • SHA1

    303b0789c69e9bd69a10178563a37d0d750aba0e

  • SHA256

    d5b3ee6b5b5f4047ccb94d6f7f6477c9b6efaa40ec24db658a42d44e706e4b3c

  • SHA512

    dabaaf59a7dc4c195042737a74a2b3356d56d86597dd7ba712b72766b0dde1e95f0362077bca7b9075e56ab426c2fbe7d094820dd493d0720034a92b92cf5649

  • SSDEEP

    12288:Fvs//PBjZn0D/Mo/ukOH9MryRsqZn/qskGHqWFBkl:F0/xVn0DBWkOHSrmwWqr

Malware Config

Targets

    • Target

      ba4e976af6663bff40803711fd89230a_JaffaCakes118

    • Size

      461KB

    • MD5

      ba4e976af6663bff40803711fd89230a

    • SHA1

      303b0789c69e9bd69a10178563a37d0d750aba0e

    • SHA256

      d5b3ee6b5b5f4047ccb94d6f7f6477c9b6efaa40ec24db658a42d44e706e4b3c

    • SHA512

      dabaaf59a7dc4c195042737a74a2b3356d56d86597dd7ba712b72766b0dde1e95f0362077bca7b9075e56ab426c2fbe7d094820dd493d0720034a92b92cf5649

    • SSDEEP

      12288:Fvs//PBjZn0D/Mo/ukOH9MryRsqZn/qskGHqWFBkl:F0/xVn0DBWkOHSrmwWqr

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks