Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
cdd8197ab75a2fcef103043b942e185a_JaffaCakes118
-
Size
733KB
-
Sample
240901-abqnnatblh
-
MD5
cdd8197ab75a2fcef103043b942e185a
-
SHA1
22f3b3de1cb5b6ce1e2fbdaca46ab79d6222d895
-
SHA256
72077d9c184dfc85ddf18531d4d15ec40da0cc2e6118224fc0109f94f7656151
-
SHA512
5b642139f7f4eb2a1f4042098c7514e07bbabed92edf7a0c0cef719f44b34f30c9d538a1514d5366233870e62be82a3e638a13a2abcaeb658740f705e53dcf2f
-
SSDEEP
12288:13Fpj4rBRLukn+zKg2oOR2OQl5XAdmxQDgGeItGBV07XpWZhASRXHYnrmb:1VpUFRUgoOwOY5XAqQlFtWVAqRXHYrmb
Malware Config
Targets
-
-
Target
cdd8197ab75a2fcef103043b942e185a_JaffaCakes118
-
Size
733KB
-
MD5
cdd8197ab75a2fcef103043b942e185a
-
SHA1
22f3b3de1cb5b6ce1e2fbdaca46ab79d6222d895
-
SHA256
72077d9c184dfc85ddf18531d4d15ec40da0cc2e6118224fc0109f94f7656151
-
SHA512
5b642139f7f4eb2a1f4042098c7514e07bbabed92edf7a0c0cef719f44b34f30c9d538a1514d5366233870e62be82a3e638a13a2abcaeb658740f705e53dcf2f
-
SSDEEP
12288:13Fpj4rBRLukn+zKg2oOR2OQl5XAdmxQDgGeItGBV07XpWZhASRXHYnrmb:1VpUFRUgoOwOY5XAqQlFtWVAqRXHYrmb
Score8/10-
Modifies Windows Firewall
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
MITRE ATT&CK Enterprise v15
Persistence
Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1Privilege Escalation
Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1