Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
d436660b453830d0a31d0bf9ed8c5e36_JaffaCakes118
-
Size
833KB
-
Sample
240908-m6fs6asejp
-
MD5
d436660b453830d0a31d0bf9ed8c5e36
-
SHA1
408c40d44fe48eb83f30de84d66cda8a3705a245
-
SHA256
cafa6b79f58dade4caa20cfaa326260cc75a9df2d8c7cadccdfcfc6f37489026
-
SHA512
18025fd4b111e65e92c14d661d22c42494037d9e07c93c6ea17dd00c3a69869019ae65e8fefc3fb3981fe809acd828c1e7ed261876b78acaa82d6f5aac194556
-
SSDEEP
12288:i/jfcyc79Oe60mCT1hkaDi9JGgdj9/XqEIW0m2eDlofFFeTAHoRky/B4oVWgXdUi:irfjQdLbphkAOXj2eCFGkzoWPQyB
Static task
static1
Behavioral task
behavioral1
Sample
d436660b453830d0a31d0bf9ed8c5e36_JaffaCakes118.exe
Resource
win7-20240903-en
Malware Config
Targets
-
-
Target
d436660b453830d0a31d0bf9ed8c5e36_JaffaCakes118
-
Size
833KB
-
MD5
d436660b453830d0a31d0bf9ed8c5e36
-
SHA1
408c40d44fe48eb83f30de84d66cda8a3705a245
-
SHA256
cafa6b79f58dade4caa20cfaa326260cc75a9df2d8c7cadccdfcfc6f37489026
-
SHA512
18025fd4b111e65e92c14d661d22c42494037d9e07c93c6ea17dd00c3a69869019ae65e8fefc3fb3981fe809acd828c1e7ed261876b78acaa82d6f5aac194556
-
SSDEEP
12288:i/jfcyc79Oe60mCT1hkaDi9JGgdj9/XqEIW0m2eDlofFFeTAHoRky/B4oVWgXdUi:irfjQdLbphkAOXj2eCFGkzoWPQyB
-
Identifies Wine through registry keys
Wine is a compatibility layer capable of running Windows applications, which can be used as sandboxing environment.
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-