Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    d2e6e918cd652ec76f68081f48c23cde_JaffaCakes118

  • Size

    31.5MB

  • Sample

    240907-1mrcfaxarn

  • MD5

    d2e6e918cd652ec76f68081f48c23cde

  • SHA1

    fa9a154c389869c1d1710a27d0f301376aebcc94

  • SHA256

    7e4d8e190af1c6ae27652c6c5e100dc47440c83932c4eb54bee1275a59acfd35

  • SHA512

    17d08684fe304a32c3e587a967f7c604bf94389b301bb068eb1fba66e1b08c5e1aace835cc71ec94187ce244efe98d7b9ffa253cfa33aaab93025bd4c9e23b71

  • SSDEEP

    786432:yb5MHgl62qHhXMnunshKyBRQWAfWddWCz5fFF:ynXOheW2bAfgd9FF

Malware Config

Targets

    • Target

      d2e6e918cd652ec76f68081f48c23cde_JaffaCakes118

    • Size

      31.5MB

    • MD5

      d2e6e918cd652ec76f68081f48c23cde

    • SHA1

      fa9a154c389869c1d1710a27d0f301376aebcc94

    • SHA256

      7e4d8e190af1c6ae27652c6c5e100dc47440c83932c4eb54bee1275a59acfd35

    • SHA512

      17d08684fe304a32c3e587a967f7c604bf94389b301bb068eb1fba66e1b08c5e1aace835cc71ec94187ce244efe98d7b9ffa253cfa33aaab93025bd4c9e23b71

    • SSDEEP

      786432:yb5MHgl62qHhXMnunshKyBRQWAfWddWCz5fFF:ynXOheW2bAfgd9FF

    • Checks if the Android device is rooted.

    • Loads dropped Dex/Jar

      Runs executable file dropped to the device during analysis.

    • Queries information about running processes on the device

      Application may abuse the framework's APIs to collect information about running processes on the device.

    • Queries the phone number (MSISDN for GSM devices)

    • Queries information about active data network

    • Queries information about the current Wi-Fi connection

      Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

    • Queries the unique device ID (IMEI, MEID, IMSI)

MITRE ATT&CK Mobile v15

Tasks