Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
c23157dff40fe2d7689121adb4644313_JaffaCakes118
-
Size
1.1MB
-
Sample
240826-d1f3astfjm
-
MD5
c23157dff40fe2d7689121adb4644313
-
SHA1
aea2897bd913c914fcf3c0d57d79d3fdac9f6237
-
SHA256
3ffca5b4a4153528d14b06a4a24947e8c466ae4b16483d51d36a07111f8e24b1
-
SHA512
117c839b122f8872210c98b4dd39d7feeccaee4d272ef19ffd39e27c85878ec4033266ea3213d563fc98f6a3a7c7450187a54e0fb1553bea07a38490fab86920
-
SSDEEP
12288:DkP9YgDp9RgVyuYqNAPxz2Y6KLvOnR/jdMaI/VqcXXoXRgYNth7WFD1LgJu2uQtE:DkvDp9aEvkpMasXXceQHSFD1LzXffB
Static task
static1
Behavioral task
behavioral1
Sample
c23157dff40fe2d7689121adb4644313_JaffaCakes118.exe
Resource
win7-20240729-en
Behavioral task
behavioral2
Sample
c23157dff40fe2d7689121adb4644313_JaffaCakes118.exe
Resource
win10v2004-20240802-en
Malware Config
Targets
-
-
Target
c23157dff40fe2d7689121adb4644313_JaffaCakes118
-
Size
1.1MB
-
MD5
c23157dff40fe2d7689121adb4644313
-
SHA1
aea2897bd913c914fcf3c0d57d79d3fdac9f6237
-
SHA256
3ffca5b4a4153528d14b06a4a24947e8c466ae4b16483d51d36a07111f8e24b1
-
SHA512
117c839b122f8872210c98b4dd39d7feeccaee4d272ef19ffd39e27c85878ec4033266ea3213d563fc98f6a3a7c7450187a54e0fb1553bea07a38490fab86920
-
SSDEEP
12288:DkP9YgDp9RgVyuYqNAPxz2Y6KLvOnR/jdMaI/VqcXXoXRgYNth7WFD1LgJu2uQtE:DkvDp9aEvkpMasXXceQHSFD1LzXffB
Score7/10-
Checks BIOS information in registry
BIOS information is often read in order to detect sandboxing environments.
-
Maps connected drives based on registry
Disk information is often read in order to detect sandboxing environments.
-
Suspicious use of SetThreadContext
-