Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    d37bae4bd95698b321d5e32a0d354715_JaffaCakes118

  • Size

    26.7MB

  • Sample

    240908-eh4w3swhlf

  • MD5

    d37bae4bd95698b321d5e32a0d354715

  • SHA1

    8abba12d16f1f4deeca0b80019dc34a5d72adbb5

  • SHA256

    df28b06ded37fd4ac998aea351b0549d3652bdc5828b1f9f97bd0eda5f6e9db9

  • SHA512

    9a73e41b00220cbe1cf54908d9b76463238b107e1eb23c79b9379246ef5bd7879cfd26acb31a974c163a278114cabdbf59612d483987e16920ce8fcf6babe009

  • SSDEEP

    49152:XYgph7GBfWSkph7GBfWI/4MnYYJ2ZhqSGLHkJEMxzyV9lr:XX77GBfWz77GBfWpIDQxzyV9lr

Malware Config

Targets

    • Target

      d37bae4bd95698b321d5e32a0d354715_JaffaCakes118

    • Size

      26.7MB

    • MD5

      d37bae4bd95698b321d5e32a0d354715

    • SHA1

      8abba12d16f1f4deeca0b80019dc34a5d72adbb5

    • SHA256

      df28b06ded37fd4ac998aea351b0549d3652bdc5828b1f9f97bd0eda5f6e9db9

    • SHA512

      9a73e41b00220cbe1cf54908d9b76463238b107e1eb23c79b9379246ef5bd7879cfd26acb31a974c163a278114cabdbf59612d483987e16920ce8fcf6babe009

    • SSDEEP

      49152:XYgph7GBfWSkph7GBfWI/4MnYYJ2ZhqSGLHkJEMxzyV9lr:XX77GBfWz77GBfWpIDQxzyV9lr

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks