Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
d66377be6bcb2a746af79e34267c385c_JaffaCakes118
-
Size
88KB
-
Sample
240909-qjb38szcqj
-
MD5
d66377be6bcb2a746af79e34267c385c
-
SHA1
95c7ee07fda3b3a37f59e0a2b6c33eaa2dddc4b6
-
SHA256
52c8137e37d5ab0b5f0575b1d3b4da6d86d0c242dafa3e729b2ffc05e7bf19f4
-
SHA512
318ce7c72d4cd7bd748526fce420282e7a004328a5f5c2dbf5d0c6d322c9ccfeea93232d2012d52e2c982f5767f72e5bcc4a5840c62b193c5f5d562ec85c753b
-
SSDEEP
1536:cKLkwCULyBgrLswwWGaWbWbobSbVbBbvJ1SmHZx9k1nKw7Gda:7YwCU1rv51IGE
Malware Config
Targets
-
-
Target
d66377be6bcb2a746af79e34267c385c_JaffaCakes118
-
Size
88KB
-
MD5
d66377be6bcb2a746af79e34267c385c
-
SHA1
95c7ee07fda3b3a37f59e0a2b6c33eaa2dddc4b6
-
SHA256
52c8137e37d5ab0b5f0575b1d3b4da6d86d0c242dafa3e729b2ffc05e7bf19f4
-
SHA512
318ce7c72d4cd7bd748526fce420282e7a004328a5f5c2dbf5d0c6d322c9ccfeea93232d2012d52e2c982f5767f72e5bcc4a5840c62b193c5f5d562ec85c753b
-
SSDEEP
1536:cKLkwCULyBgrLswwWGaWbWbobSbVbBbvJ1SmHZx9k1nKw7Gda:7YwCU1rv51IGE
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2