Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
d71b7b65a0d5076171b93694649ca170_JaffaCakes118
-
Size
1.5MB
-
Sample
240909-z5rv9a1ank
-
MD5
d71b7b65a0d5076171b93694649ca170
-
SHA1
e6892b1c04b99be0d412f18587f3c8413a10c6d6
-
SHA256
22f1135aca694dd10ff5ae36032ac397a5a84edb9642a6f3d77b82f74568f8b4
-
SHA512
552c8ffab1a84661110096dc1433399251015a6d23832be72f7de547a0437ed875077afd7113ceb45daa5d1fa55ede5925d2e9f039ba4b4e35d813a87a2c55a7
-
SSDEEP
24576:FgDgDpHObRl46iPZ9UIRLLy1urNCwax+Wc9mjJUJx7rHlcab3jyH:FgDgDM1lo9UcyEr8waxe4jJG7rFce8
Static task
static1
Behavioral task
behavioral1
Sample
d71b7b65a0d5076171b93694649ca170_JaffaCakes118.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
d71b7b65a0d5076171b93694649ca170_JaffaCakes118.exe
Resource
win10v2004-20240802-en
Malware Config
Targets
-
-
Target
d71b7b65a0d5076171b93694649ca170_JaffaCakes118
-
Size
1.5MB
-
MD5
d71b7b65a0d5076171b93694649ca170
-
SHA1
e6892b1c04b99be0d412f18587f3c8413a10c6d6
-
SHA256
22f1135aca694dd10ff5ae36032ac397a5a84edb9642a6f3d77b82f74568f8b4
-
SHA512
552c8ffab1a84661110096dc1433399251015a6d23832be72f7de547a0437ed875077afd7113ceb45daa5d1fa55ede5925d2e9f039ba4b4e35d813a87a2c55a7
-
SSDEEP
24576:FgDgDpHObRl46iPZ9UIRLLy1urNCwax+Wc9mjJUJx7rHlcab3jyH:FgDgDM1lo9UcyEr8waxe4jJG7rFce8
Score7/10-
Checks BIOS information in registry
BIOS information is often read in order to detect sandboxing environments.
-
Loads dropped DLL
-
Maps connected drives based on registry
Disk information is often read in order to detect sandboxing environments.
-
Suspicious use of SetThreadContext
-