Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
cfda539c20c2d2b2b8b803391f6e820a_JaffaCakes118
-
Size
103KB
-
Sample
240906-swmfvavalc
-
MD5
cfda539c20c2d2b2b8b803391f6e820a
-
SHA1
f80de74aa959ea46c311015aba74992ef11cc5b8
-
SHA256
f47cd1ff216eabb2bc0a777f9c827c2975b69133d31570b6d8114f9cada3361e
-
SHA512
1b9ccee60b813e352b24c7930c7398775ef6688c38484ee5e5a90337a17faf6667c12288e3cdf83c161a9ebdb2ed94a009a898c8b454fedb000669ed5cd56ec8
-
SSDEEP
3072:F0+ODLbYZIhbiwcg0QaTEFXc6HjS2aUsc6HcT66vlmQ90TDyrPGvLvHjvfrH/zjo:xcbYZquwr0VTEFXc6HjdaUsc6HcT66vd
Static task
static1
Behavioral task
behavioral1
Sample
cfda539c20c2d2b2b8b803391f6e820a_JaffaCakes118.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
cfda539c20c2d2b2b8b803391f6e820a_JaffaCakes118.exe
Resource
win10v2004-20240802-en
Malware Config
Targets
-
-
Target
cfda539c20c2d2b2b8b803391f6e820a_JaffaCakes118
-
Size
103KB
-
MD5
cfda539c20c2d2b2b8b803391f6e820a
-
SHA1
f80de74aa959ea46c311015aba74992ef11cc5b8
-
SHA256
f47cd1ff216eabb2bc0a777f9c827c2975b69133d31570b6d8114f9cada3361e
-
SHA512
1b9ccee60b813e352b24c7930c7398775ef6688c38484ee5e5a90337a17faf6667c12288e3cdf83c161a9ebdb2ed94a009a898c8b454fedb000669ed5cd56ec8
-
SSDEEP
3072:F0+ODLbYZIhbiwcg0QaTEFXc6HjS2aUsc6HcT66vlmQ90TDyrPGvLvHjvfrH/zjo:xcbYZquwr0VTEFXc6HjdaUsc6HcT66vd
Score10/10-
Modifies system executable filetype association
-
Drops file in System32 directory
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Abuse Elevation Control Mechanism
1Bypass User Account Control
1Event Triggered Execution
1Change Default File Association
1Defense Evasion
Abuse Elevation Control Mechanism
1Bypass User Account Control
1Impair Defenses
1Disable or Modify Tools
1Modify Registry
3