Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    cf25251276b2999c8f7014697f57a7c2_JaffaCakes118

  • Size

    184KB

  • Sample

    240906-kp6xxaxbln

  • MD5

    cf25251276b2999c8f7014697f57a7c2

  • SHA1

    01fcbc1ca0a3dde9914724faf96232e9396a11ef

  • SHA256

    38e4e36d76cea54d34e92d80fa07267224732a3e7cb3febb9e8198a94086e33e

  • SHA512

    751dd702f700bd11946d6a9e5a6a05468c8d4f71900b6c2953f3578e1eef987baf3c350132870149c73e2cb25790fe531cc09ba4ee2a90323cb8e7959f83589a

  • SSDEEP

    3072:6vjYbzdwq5vvF70xmmPx22uuzoGmTwaS4XZyAalOwpEpKia:6vjYbzWqpMU2uusfVX4Rpsr

Malware Config

Targets

    • Target

      cf25251276b2999c8f7014697f57a7c2_JaffaCakes118

    • Size

      184KB

    • MD5

      cf25251276b2999c8f7014697f57a7c2

    • SHA1

      01fcbc1ca0a3dde9914724faf96232e9396a11ef

    • SHA256

      38e4e36d76cea54d34e92d80fa07267224732a3e7cb3febb9e8198a94086e33e

    • SHA512

      751dd702f700bd11946d6a9e5a6a05468c8d4f71900b6c2953f3578e1eef987baf3c350132870149c73e2cb25790fe531cc09ba4ee2a90323cb8e7959f83589a

    • SSDEEP

      3072:6vjYbzdwq5vvF70xmmPx22uuzoGmTwaS4XZyAalOwpEpKia:6vjYbzWqpMU2uusfVX4Rpsr

    • Modifies WinLogon for persistence

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks