Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    cfece8f4a2e4243e228f5a64012e60a2_JaffaCakes118

  • Size

    281KB

  • Sample

    240906-tkf1csvgpp

  • MD5

    cfece8f4a2e4243e228f5a64012e60a2

  • SHA1

    20d327f9bad756f6dbde1fe3e289466300b1003d

  • SHA256

    f038c84a688c7223f3a4855737be5e82064e6f3cdcf74fe676eac58be3e878cc

  • SHA512

    85d435e9ffe1e9f9ef551421e9506b9bf3de5bb1f92fbe35ac7b4bb0c6037ab9d70894967b4a47794e26d7dc1d91e0e759161644656d51743eb58dd0b8dc774b

  • SSDEEP

    6144:91OgDPdkBAFZWjadD4s2VN9gx+2BMBsf2be5BT7tvPseaR:91OgLda9k+wGo2bgThvg

Malware Config

Targets

    • Target

      cfece8f4a2e4243e228f5a64012e60a2_JaffaCakes118

    • Size

      281KB

    • MD5

      cfece8f4a2e4243e228f5a64012e60a2

    • SHA1

      20d327f9bad756f6dbde1fe3e289466300b1003d

    • SHA256

      f038c84a688c7223f3a4855737be5e82064e6f3cdcf74fe676eac58be3e878cc

    • SHA512

      85d435e9ffe1e9f9ef551421e9506b9bf3de5bb1f92fbe35ac7b4bb0c6037ab9d70894967b4a47794e26d7dc1d91e0e759161644656d51743eb58dd0b8dc774b

    • SSDEEP

      6144:91OgDPdkBAFZWjadD4s2VN9gx+2BMBsf2be5BT7tvPseaR:91OgLda9k+wGo2bgThvg

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

MITRE ATT&CK Enterprise v15

Tasks