Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    d28188186c2302e9b86a056dd2ce83b0_JaffaCakes118

  • Size

    99KB

  • Sample

    240907-wdnsqsycqf

  • MD5

    d28188186c2302e9b86a056dd2ce83b0

  • SHA1

    464e73da9365a58c17f9609f819fd0c4151b9cff

  • SHA256

    bc66d1a9e2ddd07a216f4406e3b5c624139d6d9fb77a63f7e929b0ffabee8e05

  • SHA512

    71f16f0ae80f35a484b1fef176774f3f8e0682047e0aa1f60c47cdd3b8e1bde71f1a13cda0694d15f2155acabbfc84728e7ac268ff35f358c00943fafd62393d

  • SSDEEP

    3072:9viLByM/fOawqAtJkVHSTXTdCnTbB59TiY:9QByMuP9tJKsJCnT

Malware Config

Targets

    • Target

      d28188186c2302e9b86a056dd2ce83b0_JaffaCakes118

    • Size

      99KB

    • MD5

      d28188186c2302e9b86a056dd2ce83b0

    • SHA1

      464e73da9365a58c17f9609f819fd0c4151b9cff

    • SHA256

      bc66d1a9e2ddd07a216f4406e3b5c624139d6d9fb77a63f7e929b0ffabee8e05

    • SHA512

      71f16f0ae80f35a484b1fef176774f3f8e0682047e0aa1f60c47cdd3b8e1bde71f1a13cda0694d15f2155acabbfc84728e7ac268ff35f358c00943fafd62393d

    • SSDEEP

      3072:9viLByM/fOawqAtJkVHSTXTdCnTbB59TiY:9QByMuP9tJKsJCnT

    • Modifies firewall policy service

    • Drops file in Drivers directory

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

    • Drops desktop.ini file(s)

MITRE ATT&CK Enterprise v15

Tasks