Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
d0f1e15804a02307156f2e5d208622ea_JaffaCakes118
-
Size
36KB
-
Sample
240907-dk7v3s1hnk
-
MD5
d0f1e15804a02307156f2e5d208622ea
-
SHA1
41265e462e3ec83236ba345c3da5420fd6d8adb1
-
SHA256
5d2e6ed050c18731d2e72a5ce25ec5ee3e2b0363f9833e8c4f10f74ff525e015
-
SHA512
88c8c9737bf544758f5ff39b0d2df6c9a130cb419ce5a64e151a99e4d78bf17ab96bf02227c16cfce907a2dd012c786682303237443ff37ea2698209a12cea2b
-
SSDEEP
768:Yt8dldJN5LXcyXrCD1tDMByGqnXm3+AVWEvaLW:DdzcyXrC/GsnXiVWEvaLW
Static task
static1
Behavioral task
behavioral1
Sample
d0f1e15804a02307156f2e5d208622ea_JaffaCakes118.dll
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
d0f1e15804a02307156f2e5d208622ea_JaffaCakes118.dll
Resource
win10v2004-20240802-en
Malware Config
Targets
-
-
Target
d0f1e15804a02307156f2e5d208622ea_JaffaCakes118
-
Size
36KB
-
MD5
d0f1e15804a02307156f2e5d208622ea
-
SHA1
41265e462e3ec83236ba345c3da5420fd6d8adb1
-
SHA256
5d2e6ed050c18731d2e72a5ce25ec5ee3e2b0363f9833e8c4f10f74ff525e015
-
SHA512
88c8c9737bf544758f5ff39b0d2df6c9a130cb419ce5a64e151a99e4d78bf17ab96bf02227c16cfce907a2dd012c786682303237443ff37ea2698209a12cea2b
-
SSDEEP
768:Yt8dldJN5LXcyXrCD1tDMByGqnXm3+AVWEvaLW:DdzcyXrC/GsnXiVWEvaLW
Score8/10-
Event Triggered Execution: AppInit DLLs
Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-