Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
c7eb0fcaccc1c81444cf698986dfdc7f_JaffaCakes118
-
Size
728KB
-
Sample
240829-aqxerathra
-
MD5
c7eb0fcaccc1c81444cf698986dfdc7f
-
SHA1
56a8889bb6c390556721b7cd05b05c9e2d3931e8
-
SHA256
47a216c49b1010996c35383f33470102cee8b4ae65c3cdfb2edeeb42ee4fae22
-
SHA512
570890a110c63b82329874b4ce22db9a31b25ab4e1dd6c504bc51894e05932031a093065983f2a02964712b4add610e1ad749b511c043472f92aa1a2f9238504
-
SSDEEP
12288:lEcF8D2K53tGcAOYYsLN2Z8bbXP/meGDgGeItoEc9GspWZhASRXHYnrmd:lEc8H5fMLN2Kb7PrGlFtov9GsqRXHYrK
Malware Config
Targets
-
-
Target
c7eb0fcaccc1c81444cf698986dfdc7f_JaffaCakes118
-
Size
728KB
-
MD5
c7eb0fcaccc1c81444cf698986dfdc7f
-
SHA1
56a8889bb6c390556721b7cd05b05c9e2d3931e8
-
SHA256
47a216c49b1010996c35383f33470102cee8b4ae65c3cdfb2edeeb42ee4fae22
-
SHA512
570890a110c63b82329874b4ce22db9a31b25ab4e1dd6c504bc51894e05932031a093065983f2a02964712b4add610e1ad749b511c043472f92aa1a2f9238504
-
SSDEEP
12288:lEcF8D2K53tGcAOYYsLN2Z8bbXP/meGDgGeItoEc9GspWZhASRXHYnrmd:lEc8H5fMLN2Kb7PrGlFtov9GsqRXHYrK
Score8/10-
Modifies Windows Firewall
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
MITRE ATT&CK Enterprise v15
Persistence
Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1Privilege Escalation
Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1