Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    c83727b3f4bf553c0c5661a87ed6dd0d_JaffaCakes118

  • Size

    11.2MB

  • Sample

    240829-eyj7lstcke

  • MD5

    c83727b3f4bf553c0c5661a87ed6dd0d

  • SHA1

    be719094609697881c50623f4338776684a91add

  • SHA256

    23f10241d500d632d96e76fcdef6d0a6fef02a767a6bf4768e1822bf3ba78b18

  • SHA512

    15de7543161c0839a87c417096873760e0c12da2237d3fd6d42f40167a54f90256e487608a23cc93d25ffb47dc467366a271236aa30ed0fae2ecd6a76305c0b8

  • SSDEEP

    196608:iyNHjz2N+KoCmDRHbO96atfvI4A4XBBEEE++CmZYOo+EEEEEEEBBBBBBmmmmmmPt:iw586QfLBBEEE++CmZYOo+EEEEEEEBBN

Malware Config

Targets

    • Target

      c83727b3f4bf553c0c5661a87ed6dd0d_JaffaCakes118

    • Size

      11.2MB

    • MD5

      c83727b3f4bf553c0c5661a87ed6dd0d

    • SHA1

      be719094609697881c50623f4338776684a91add

    • SHA256

      23f10241d500d632d96e76fcdef6d0a6fef02a767a6bf4768e1822bf3ba78b18

    • SHA512

      15de7543161c0839a87c417096873760e0c12da2237d3fd6d42f40167a54f90256e487608a23cc93d25ffb47dc467366a271236aa30ed0fae2ecd6a76305c0b8

    • SSDEEP

      196608:iyNHjz2N+KoCmDRHbO96atfvI4A4XBBEEE++CmZYOo+EEEEEEEBBBBBBmmmmmmPt:iw586QfLBBEEE++CmZYOo+EEEEEEEBBN

    • Uses Session Manager for persistence

      Creates Session Manager registry key to run executable early in system boot.

    • Adds Run key to start application

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks