Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    cf4884c260d6dba1b262b2305662593c_JaffaCakes118

  • Size

    37KB

  • Sample

    240906-l1v58azelq

  • MD5

    cf4884c260d6dba1b262b2305662593c

  • SHA1

    c971bc4645d82caebc10b4a7ef5f9676ba7cf63c

  • SHA256

    af3bf898da5864f374d850aef31b79987b3cf53f8e2705dad7e05dfefaeb787a

  • SHA512

    3a6fbe2a8f67164e7bea045511c0eb600b77f0a7b7e2f38a2df862ae4a4485a72d3be643aa35c4e99afec4f16e35dc3382ef6829bac86a4e59335f8cfc509d4d

  • SSDEEP

    768:edIZ/alwuAknNWuCMQpb0ruFm1YqTrmHwbLyMyw:edILlknNU4rOobbLynw

Score
7/10

Malware Config

Targets

    • Target

      cf4884c260d6dba1b262b2305662593c_JaffaCakes118

    • Size

      37KB

    • MD5

      cf4884c260d6dba1b262b2305662593c

    • SHA1

      c971bc4645d82caebc10b4a7ef5f9676ba7cf63c

    • SHA256

      af3bf898da5864f374d850aef31b79987b3cf53f8e2705dad7e05dfefaeb787a

    • SHA512

      3a6fbe2a8f67164e7bea045511c0eb600b77f0a7b7e2f38a2df862ae4a4485a72d3be643aa35c4e99afec4f16e35dc3382ef6829bac86a4e59335f8cfc509d4d

    • SSDEEP

      768:edIZ/alwuAknNWuCMQpb0ruFm1YqTrmHwbLyMyw:edILlknNU4rOobbLynw

    Score
    7/10
    • Executes dropped EXE

    • Loads dropped DLL

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks