Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    c0773499f3869edcf9e34efb357d2a0b_JaffaCakes118

  • Size

    19KB

  • Sample

    240825-lp9t8sxejd

  • MD5

    c0773499f3869edcf9e34efb357d2a0b

  • SHA1

    a43af54dbf26dfc72530f3e6276156112c617197

  • SHA256

    b493ac6dcc2e2048bbf8acb79f4295caf8ab5d115f0b7251b284429692c3fb0c

  • SHA512

    ae6651b0a1f4b217bdafa3b7d94273f4b97b1236b29b4c3279981039bb89e2f65e2929a3ff76f120d42ecffb343e0cea8bfe78091d0015bba0198dba9b3ea8a2

  • SSDEEP

    384:5tOx5k3hj5Mgw+37oVRlZIWTGMnV8LwLXUMivJBrR6FwW2:5cE355Mgd7v4QL6UMixBEwW

Malware Config

Targets

    • Target

      c0773499f3869edcf9e34efb357d2a0b_JaffaCakes118

    • Size

      19KB

    • MD5

      c0773499f3869edcf9e34efb357d2a0b

    • SHA1

      a43af54dbf26dfc72530f3e6276156112c617197

    • SHA256

      b493ac6dcc2e2048bbf8acb79f4295caf8ab5d115f0b7251b284429692c3fb0c

    • SHA512

      ae6651b0a1f4b217bdafa3b7d94273f4b97b1236b29b4c3279981039bb89e2f65e2929a3ff76f120d42ecffb343e0cea8bfe78091d0015bba0198dba9b3ea8a2

    • SSDEEP

      384:5tOx5k3hj5Mgw+37oVRlZIWTGMnV8LwLXUMivJBrR6FwW2:5cE355Mgd7v4QL6UMixBEwW

    • Adds policy Run key to start application

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

MITRE ATT&CK Enterprise v15

Tasks