Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    bad48b59a32db64e9b8dd79535c55082_JaffaCakes118

  • Size

    224KB

  • Sample

    240823-h854ls1gkg

  • MD5

    bad48b59a32db64e9b8dd79535c55082

  • SHA1

    0e4ca7c9976d476cb3fe6fbd895c02272897826e

  • SHA256

    241c00ff76494c9143dfe5080cbfb3ed04328db117f654ec9d944336c0e7cbaa

  • SHA512

    58a6be6dfdaa54db537d8f0838f6fb8c6157cdd66e03b40132998f906843e89bc6de8fd8313af4262feb43fcfc34a8b153a088bd10d8e4081b4718189e904587

  • SSDEEP

    3072:osQpNupVCso5g0GPfV/FRC/B0khVE/50mitp5kmbwCW1CZudFVyX5:aqv7PkhVE/+RH5vwCAAuDV

Score
7/10

Malware Config

Targets

    • Target

      bad48b59a32db64e9b8dd79535c55082_JaffaCakes118

    • Size

      224KB

    • MD5

      bad48b59a32db64e9b8dd79535c55082

    • SHA1

      0e4ca7c9976d476cb3fe6fbd895c02272897826e

    • SHA256

      241c00ff76494c9143dfe5080cbfb3ed04328db117f654ec9d944336c0e7cbaa

    • SHA512

      58a6be6dfdaa54db537d8f0838f6fb8c6157cdd66e03b40132998f906843e89bc6de8fd8313af4262feb43fcfc34a8b153a088bd10d8e4081b4718189e904587

    • SSDEEP

      3072:osQpNupVCso5g0GPfV/FRC/B0khVE/50mitp5kmbwCW1CZudFVyX5:aqv7PkhVE/+RH5vwCAAuDV

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

MITRE ATT&CK Enterprise v15

Tasks