Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    c760690aa9bad0e46111ae7b65440bbd_JaffaCakes118

  • Size

    60KB

  • Sample

    240828-wqcagaygqe

  • MD5

    c760690aa9bad0e46111ae7b65440bbd

  • SHA1

    9b327d892374859e8aea2e387fd0d6e9724931c3

  • SHA256

    8b58427148d8a34f71f375b689ef7dcbe7e6f09f715396c23e5de988736cf111

  • SHA512

    5cf7e3e5af8b2df009232cdc12e9681ba4cc3479c822789abcc8a33f644c8b479bdfa490c4ecca76cdaf6c3b11a7b1a384fb7c209928ffa8a54bb5c3c6379e2b

  • SSDEEP

    768:CBZX+Nzp4mjNx4Ss4l6iE18++uWdB9GBc81f+Iw5BLJUXNPgH9nmscY:CPdc2inuWdB9r8YXPJY2BmscY

Malware Config

Targets

    • Target

      c760690aa9bad0e46111ae7b65440bbd_JaffaCakes118

    • Size

      60KB

    • MD5

      c760690aa9bad0e46111ae7b65440bbd

    • SHA1

      9b327d892374859e8aea2e387fd0d6e9724931c3

    • SHA256

      8b58427148d8a34f71f375b689ef7dcbe7e6f09f715396c23e5de988736cf111

    • SHA512

      5cf7e3e5af8b2df009232cdc12e9681ba4cc3479c822789abcc8a33f644c8b479bdfa490c4ecca76cdaf6c3b11a7b1a384fb7c209928ffa8a54bb5c3c6379e2b

    • SSDEEP

      768:CBZX+Nzp4mjNx4Ss4l6iE18++uWdB9GBc81f+Iw5BLJUXNPgH9nmscY:CPdc2inuWdB9r8YXPJY2BmscY

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

MITRE ATT&CK Enterprise v15

Tasks