Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
d45c837903e41d734742126e207d5aab_JaffaCakes118
-
Size
104KB
-
Sample
240908-pm2bvsybmg
-
MD5
d45c837903e41d734742126e207d5aab
-
SHA1
ae927d7a2378f0e6549b25a86a6505d807655e0a
-
SHA256
76b287087874adc8cbe231f695574a33166e5437b01643f85ff897380e4d160b
-
SHA512
c9fea6bc1f22fcb3a81abb5d3577f1f60fe9b540dc6be939de40d27c3b9ca407b1f211e44d34198bb7a41f21f30e32c16b274037f3e0dcf089d20b970b80ed52
-
SSDEEP
1536:K24imNbbAJ8xxp+pofZ71TDdxqh5c2+JTlD/5QOuqXRRRyRAR/RwRzyYWkMktgFI:RmK+5+pMI7cv776qL0oDc
Malware Config
Targets
-
-
Target
d45c837903e41d734742126e207d5aab_JaffaCakes118
-
Size
104KB
-
MD5
d45c837903e41d734742126e207d5aab
-
SHA1
ae927d7a2378f0e6549b25a86a6505d807655e0a
-
SHA256
76b287087874adc8cbe231f695574a33166e5437b01643f85ff897380e4d160b
-
SHA512
c9fea6bc1f22fcb3a81abb5d3577f1f60fe9b540dc6be939de40d27c3b9ca407b1f211e44d34198bb7a41f21f30e32c16b274037f3e0dcf089d20b970b80ed52
-
SSDEEP
1536:K24imNbbAJ8xxp+pofZ71TDdxqh5c2+JTlD/5QOuqXRRRyRAR/RwRzyYWkMktgFI:RmK+5+pMI7cv776qL0oDc
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2