Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
c0355ece52bde664028b4286cecca5b8_JaffaCakes118
-
Size
64KB
-
Sample
240825-hxvhqs1frh
-
MD5
c0355ece52bde664028b4286cecca5b8
-
SHA1
2e852ceb463ab6c5c7a9ebbea77b96b9fa4a56e1
-
SHA256
19e82027e306ad2cbcab83c79c609fd7d8cd694ddcb54fbd100b49fb4a517045
-
SHA512
71eace087410f4a79be56662858b7abd910541bbe286f68f0ddc97c4e1c5c6a53d9941396cddddbc2ed44f3bcc50adb383d01382a9add9b308da7d3e8355b90b
-
SSDEEP
768:4ivR95RwDKtqfNJSFzo/8Bt2Xiz7bYoh8T0Bz4rVqc1s7GPAyeGYbpae2o7CDB:4q95btqfNUiGt2G8IBW9TAynYb3gDB
Malware Config
Targets
-
-
Target
c0355ece52bde664028b4286cecca5b8_JaffaCakes118
-
Size
64KB
-
MD5
c0355ece52bde664028b4286cecca5b8
-
SHA1
2e852ceb463ab6c5c7a9ebbea77b96b9fa4a56e1
-
SHA256
19e82027e306ad2cbcab83c79c609fd7d8cd694ddcb54fbd100b49fb4a517045
-
SHA512
71eace087410f4a79be56662858b7abd910541bbe286f68f0ddc97c4e1c5c6a53d9941396cddddbc2ed44f3bcc50adb383d01382a9add9b308da7d3e8355b90b
-
SSDEEP
768:4ivR95RwDKtqfNJSFzo/8Bt2Xiz7bYoh8T0Bz4rVqc1s7GPAyeGYbpae2o7CDB:4q95btqfNUiGt2G8IBW9TAynYb3gDB
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Indicator Removal: File Deletion
Adversaries may delete files left behind by the actions of their intrusion activity.
-