Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    d1e3297680abf6e211e4c9bbf3dd032b_JaffaCakes118

  • Size

    1019KB

  • Sample

    240907-n7mhrstdlg

  • MD5

    d1e3297680abf6e211e4c9bbf3dd032b

  • SHA1

    0df2a81ac1ac952fafbf6112e0c111f759ec8c04

  • SHA256

    3399e547fc43c01b771ba3a6215afe1cb45dde8b0257f643b0967eb7cadb26ff

  • SHA512

    6155d902b891e4843dc8f8a2e44da8853938936a29db225e779f45c50cd7c8b46edba70a87fdf029999dcedde81cb9d76387f1cfd329cbbb52336367a0e27ab3

  • SSDEEP

    24576:bMmnDC+Zvvo21F5x7/duclIEQYRtEBOUtiZV5:bjDCfEZLcciEzRMOAiZV5

Malware Config

Targets

    • Target

      d1e3297680abf6e211e4c9bbf3dd032b_JaffaCakes118

    • Size

      1019KB

    • MD5

      d1e3297680abf6e211e4c9bbf3dd032b

    • SHA1

      0df2a81ac1ac952fafbf6112e0c111f759ec8c04

    • SHA256

      3399e547fc43c01b771ba3a6215afe1cb45dde8b0257f643b0967eb7cadb26ff

    • SHA512

      6155d902b891e4843dc8f8a2e44da8853938936a29db225e779f45c50cd7c8b46edba70a87fdf029999dcedde81cb9d76387f1cfd329cbbb52336367a0e27ab3

    • SSDEEP

      24576:bMmnDC+Zvvo21F5x7/duclIEQYRtEBOUtiZV5:bjDCfEZLcciEzRMOAiZV5

    • Darkcomet

      DarkComet is a remote access trojan (RAT) developed by Jean-Pierre Lesueur.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • AutoIT Executable

      AutoIT scripts compiled to PE executables.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks