Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
c88e4ff421c5b21db5b3fedfa646e31b_JaffaCakes118
-
Size
463KB
-
Sample
240829-ldlm9stgqa
-
MD5
c88e4ff421c5b21db5b3fedfa646e31b
-
SHA1
c4725b40b6385ca3f1a461d3c23527aefd245f90
-
SHA256
8edf29bc3dd4453d3be96bb2ae0ce35057ca4cfb83b77ff19316e31915e0d93b
-
SHA512
883d95a77d52a32dd496a780f95ef9ee57cc0a78c523cd308a76de4a27a7cb3426d2a20212b9560ab141d4480bfdbbb880a3762f8678ac154c81356d25565376
-
SSDEEP
6144:K1GWAE418yv9ZhR6/fL0ediFN39op1HpA4hqa5ZjWJqlfV:KY5RQLClem4MaLjWJqVV
Malware Config
Targets
-
-
Target
c88e4ff421c5b21db5b3fedfa646e31b_JaffaCakes118
-
Size
463KB
-
MD5
c88e4ff421c5b21db5b3fedfa646e31b
-
SHA1
c4725b40b6385ca3f1a461d3c23527aefd245f90
-
SHA256
8edf29bc3dd4453d3be96bb2ae0ce35057ca4cfb83b77ff19316e31915e0d93b
-
SHA512
883d95a77d52a32dd496a780f95ef9ee57cc0a78c523cd308a76de4a27a7cb3426d2a20212b9560ab141d4480bfdbbb880a3762f8678ac154c81356d25565376
-
SSDEEP
6144:K1GWAE418yv9ZhR6/fL0ediFN39op1HpA4hqa5ZjWJqlfV:KY5RQLClem4MaLjWJqVV
Score7/10-
Executes dropped EXE
-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Event Triggered Execution
1Netsh Helper DLL
1Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Event Triggered Execution
1Netsh Helper DLL
1