Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    d622329824cd2ef0664c74c3d7d110d4_JaffaCakes118

  • Size

    72KB

  • Sample

    240909-mk17zatarp

  • MD5

    d622329824cd2ef0664c74c3d7d110d4

  • SHA1

    ebef3887dc04fe26f894eae54539a07f6dc9fbd5

  • SHA256

    b4184a5cdbe5c1799c5c5e39a4d0f144e31aa07a40ad936563a7a2ad5cc4a69c

  • SHA512

    ccd27f582097ae390e0ff203cfe003446fc93d6b358bb9790b9d881976cd5c67d60d2a74b628eaea858f940b72210a702e2e66becd3136cd84569ee9b62e66ec

  • SSDEEP

    768:rpQNwC3BEc4QEfu0Ei8XxNDINE3BEJwRrC0:teThavEjDWguKC0

Malware Config

Targets

    • Target

      d622329824cd2ef0664c74c3d7d110d4_JaffaCakes118

    • Size

      72KB

    • MD5

      d622329824cd2ef0664c74c3d7d110d4

    • SHA1

      ebef3887dc04fe26f894eae54539a07f6dc9fbd5

    • SHA256

      b4184a5cdbe5c1799c5c5e39a4d0f144e31aa07a40ad936563a7a2ad5cc4a69c

    • SHA512

      ccd27f582097ae390e0ff203cfe003446fc93d6b358bb9790b9d881976cd5c67d60d2a74b628eaea858f940b72210a702e2e66becd3136cd84569ee9b62e66ec

    • SSDEEP

      768:rpQNwC3BEc4QEfu0Ei8XxNDINE3BEJwRrC0:teThavEjDWguKC0

    • Modifies visibility of file extensions in Explorer

    • Executes dropped EXE

    • Loads dropped DLL

    • Network Share Discovery

      Attempt to gather information on host network.

    • Power Settings

      powercfg controls all configurable power system settings on a Windows system and can be abused to prevent an infected host from locking or shutting down.

MITRE ATT&CK Enterprise v15

Tasks