Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
c760690aa9bad0e46111ae7b65440bbd_JaffaCakes118
-
Size
60KB
-
Sample
240828-wqcagaygqe
-
MD5
c760690aa9bad0e46111ae7b65440bbd
-
SHA1
9b327d892374859e8aea2e387fd0d6e9724931c3
-
SHA256
8b58427148d8a34f71f375b689ef7dcbe7e6f09f715396c23e5de988736cf111
-
SHA512
5cf7e3e5af8b2df009232cdc12e9681ba4cc3479c822789abcc8a33f644c8b479bdfa490c4ecca76cdaf6c3b11a7b1a384fb7c209928ffa8a54bb5c3c6379e2b
-
SSDEEP
768:CBZX+Nzp4mjNx4Ss4l6iE18++uWdB9GBc81f+Iw5BLJUXNPgH9nmscY:CPdc2inuWdB9r8YXPJY2BmscY
Static task
static1
Behavioral task
behavioral1
Sample
c760690aa9bad0e46111ae7b65440bbd_JaffaCakes118.dll
Resource
win7-20240729-en
Behavioral task
behavioral2
Sample
c760690aa9bad0e46111ae7b65440bbd_JaffaCakes118.dll
Resource
win10v2004-20240802-en
Malware Config
Targets
-
-
Target
c760690aa9bad0e46111ae7b65440bbd_JaffaCakes118
-
Size
60KB
-
MD5
c760690aa9bad0e46111ae7b65440bbd
-
SHA1
9b327d892374859e8aea2e387fd0d6e9724931c3
-
SHA256
8b58427148d8a34f71f375b689ef7dcbe7e6f09f715396c23e5de988736cf111
-
SHA512
5cf7e3e5af8b2df009232cdc12e9681ba4cc3479c822789abcc8a33f644c8b479bdfa490c4ecca76cdaf6c3b11a7b1a384fb7c209928ffa8a54bb5c3c6379e2b
-
SSDEEP
768:CBZX+Nzp4mjNx4Ss4l6iE18++uWdB9GBc81f+Iw5BLJUXNPgH9nmscY:CPdc2inuWdB9r8YXPJY2BmscY
Score8/10-
Event Triggered Execution: AppInit DLLs
Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-