Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    d390016b477d98db582c3003428e4ca3_JaffaCakes118

  • Size

    428KB

  • Sample

    240908-fbl85axcmq

  • MD5

    d390016b477d98db582c3003428e4ca3

  • SHA1

    90100ade9a56b3bb315f9d0e14b8a00b53241a4d

  • SHA256

    046d1269c4ca9b24f5afb97637e19f339da45c0430abb01cc241e8305a23ee7f

  • SHA512

    33dac1eb12e4abaaddd51f04bf171b33d18267fb58979606471ea8413767218d41d6365e5d45a5029a8ac9b401595ae708c7186e57fd4e31bc9ed27db07c70ce

  • SSDEEP

    12288:Meru5x0G8RxkQWuHRpY5zpM93NISBf2yIPFz4Ztkdxte+:Mr5x4t4fievPYtkd

Malware Config

Targets

    • Target

      d390016b477d98db582c3003428e4ca3_JaffaCakes118

    • Size

      428KB

    • MD5

      d390016b477d98db582c3003428e4ca3

    • SHA1

      90100ade9a56b3bb315f9d0e14b8a00b53241a4d

    • SHA256

      046d1269c4ca9b24f5afb97637e19f339da45c0430abb01cc241e8305a23ee7f

    • SHA512

      33dac1eb12e4abaaddd51f04bf171b33d18267fb58979606471ea8413767218d41d6365e5d45a5029a8ac9b401595ae708c7186e57fd4e31bc9ed27db07c70ce

    • SSDEEP

      12288:Meru5x0G8RxkQWuHRpY5zpM93NISBf2yIPFz4Ztkdxte+:Mr5x4t4fievPYtkd

    • Windows security bypass

    • Disables taskbar notifications via registry modification

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Windows security modification

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks