Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    d38cf91a537cfabf451abb0364a12373_JaffaCakes118

  • Size

    440KB

  • Sample

    240908-e7fwjsxajj

  • MD5

    d38cf91a537cfabf451abb0364a12373

  • SHA1

    d508bac952cb07634128b7b529e66c36529af0a7

  • SHA256

    1c20922d342bcee8fcd2200643cc436d94354821417606b82966a351dcc05530

  • SHA512

    7a5c4fba36441a2a4bef72b75931d9888c5e1d23a4ac7a197dff4785d73350e7d5b3dc20929dd8db194cac4cc8dc83e9ad89257cf5625f36c96f1c1c0d2d801e

  • SSDEEP

    12288:nV6s/WNzhczofNu/l5GMavm8hdMD7YALsMY:nnekzoE/lgMz6MDJsd

Score
7/10

Malware Config

Targets

    • Target

      d38cf91a537cfabf451abb0364a12373_JaffaCakes118

    • Size

      440KB

    • MD5

      d38cf91a537cfabf451abb0364a12373

    • SHA1

      d508bac952cb07634128b7b529e66c36529af0a7

    • SHA256

      1c20922d342bcee8fcd2200643cc436d94354821417606b82966a351dcc05530

    • SHA512

      7a5c4fba36441a2a4bef72b75931d9888c5e1d23a4ac7a197dff4785d73350e7d5b3dc20929dd8db194cac4cc8dc83e9ad89257cf5625f36c96f1c1c0d2d801e

    • SSDEEP

      12288:nV6s/WNzhczofNu/l5GMavm8hdMD7YALsMY:nnekzoE/lgMz6MDJsd

    Score
    7/10
    • Loads dropped DLL

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks