Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
c22ff0d21ea25db77a972b119fd8b047_JaffaCakes118
-
Size
728KB
-
Sample
240826-dyk88stelm
-
MD5
c22ff0d21ea25db77a972b119fd8b047
-
SHA1
e88397639c4c07b6e68a74d987f24e300f95d1ee
-
SHA256
c38119da55a55d5547f26203e6287da352a47aef28c9ac389433a1d402917f1f
-
SHA512
5b6b5591b00a325164ebf3f026b31a20985133ede5d275954c558aaa3b3a000f9f997ecad362fa0bd30f8384f569e5e33fe34da3ae85046a6ba55a7ca32058e5
-
SSDEEP
12288:lEcF8D2K53tGcAOYYsLN2Z8bbXD/meGDgGeItoEc9GspWZhASRXHYnrm9:lEc8H5fMLN2Kb7DrGlFtov9GsqRXHYrC
Malware Config
Targets
-
-
Target
c22ff0d21ea25db77a972b119fd8b047_JaffaCakes118
-
Size
728KB
-
MD5
c22ff0d21ea25db77a972b119fd8b047
-
SHA1
e88397639c4c07b6e68a74d987f24e300f95d1ee
-
SHA256
c38119da55a55d5547f26203e6287da352a47aef28c9ac389433a1d402917f1f
-
SHA512
5b6b5591b00a325164ebf3f026b31a20985133ede5d275954c558aaa3b3a000f9f997ecad362fa0bd30f8384f569e5e33fe34da3ae85046a6ba55a7ca32058e5
-
SSDEEP
12288:lEcF8D2K53tGcAOYYsLN2Z8bbXD/meGDgGeItoEc9GspWZhASRXHYnrm9:lEc8H5fMLN2Kb7DrGlFtov9GsqRXHYrC
Score8/10-
Modifies Windows Firewall
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
MITRE ATT&CK Enterprise v15
Persistence
Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1Privilege Escalation
Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1