Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    c9066075af479151ff6a4b48b4a318bc_JaffaCakes118

  • Size

    73KB

  • Sample

    240829-r2eshsyerr

  • MD5

    c9066075af479151ff6a4b48b4a318bc

  • SHA1

    cebc95bd98bf6e44af3bbfdb83e51eb3bf01b010

  • SHA256

    b37f3335febc2c42bd8bdbdbf594e55b113d1b1dad510b85bf302efb747c7b4a

  • SHA512

    1d3ad0489d6af406566bc7ed9130f1728c28750789ae5d2591a4cbf5517fd1658bef3116f08eda762b8992ce801b5b57f1d387a042a3deea32d1a393755bc9e6

  • SSDEEP

    1536:xy0fk9SqxfnLRvovrnz2GtCswK/NO4eSRtUsLZ:PfkFtgz2GksJchSRtPd

Malware Config

Targets

    • Target

      c9066075af479151ff6a4b48b4a318bc_JaffaCakes118

    • Size

      73KB

    • MD5

      c9066075af479151ff6a4b48b4a318bc

    • SHA1

      cebc95bd98bf6e44af3bbfdb83e51eb3bf01b010

    • SHA256

      b37f3335febc2c42bd8bdbdbf594e55b113d1b1dad510b85bf302efb747c7b4a

    • SHA512

      1d3ad0489d6af406566bc7ed9130f1728c28750789ae5d2591a4cbf5517fd1658bef3116f08eda762b8992ce801b5b57f1d387a042a3deea32d1a393755bc9e6

    • SSDEEP

      1536:xy0fk9SqxfnLRvovrnz2GtCswK/NO4eSRtUsLZ:PfkFtgz2GksJchSRtPd

    • Boot or Logon Autostart Execution: Active Setup

      Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops desktop.ini file(s)

MITRE ATT&CK Enterprise v15

Tasks