Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
cfe0c11d4fc701d3bb91a4b974bc2683_JaffaCakes118
-
Size
100KB
-
Sample
240906-s4z2xavdnc
-
MD5
cfe0c11d4fc701d3bb91a4b974bc2683
-
SHA1
867d66c887660890c2726c38ecef1c7618442856
-
SHA256
246028453610c0b2c1534d30a264586450bbb2bc2becf17337fa134f2521221d
-
SHA512
b09fe66054a9fd776459e1de8d31429407624466baa5a1abc32b3f97c028eec9e51ad62ed77c43fa6049ea41851f98019a04e8f0322097de3e99df6ef68ba46c
-
SSDEEP
1536:I/3s+TynHRVzi8VxMT58xC9Lgq5ww84lAUUuTHM0mno+cJlId:IvsoyHi539Lsw4NuTSnohJlId
Static task
static1
Behavioral task
behavioral1
Sample
cfe0c11d4fc701d3bb91a4b974bc2683_JaffaCakes118.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
cfe0c11d4fc701d3bb91a4b974bc2683_JaffaCakes118.exe
Resource
win10v2004-20240802-en
Malware Config
Targets
-
-
Target
cfe0c11d4fc701d3bb91a4b974bc2683_JaffaCakes118
-
Size
100KB
-
MD5
cfe0c11d4fc701d3bb91a4b974bc2683
-
SHA1
867d66c887660890c2726c38ecef1c7618442856
-
SHA256
246028453610c0b2c1534d30a264586450bbb2bc2becf17337fa134f2521221d
-
SHA512
b09fe66054a9fd776459e1de8d31429407624466baa5a1abc32b3f97c028eec9e51ad62ed77c43fa6049ea41851f98019a04e8f0322097de3e99df6ef68ba46c
-
SSDEEP
1536:I/3s+TynHRVzi8VxMT58xC9Lgq5ww84lAUUuTHM0mno+cJlId:IvsoyHi539Lsw4NuTSnohJlId
Score8/10-
Event Triggered Execution: AppInit DLLs
Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.
-
Drops file in System32 directory
-