Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
db400b937af777cfa71c97590436131d_JaffaCakes118
-
Size
812KB
-
Sample
240911-1cpe4avamd
-
MD5
db400b937af777cfa71c97590436131d
-
SHA1
a054d12a1eca5bd7ce0c3599a5927e2b53585e8d
-
SHA256
60b4785645b6fe46bd4ba0fddd0ef71b2246c836a50c1c6d62c3fe85c58aa64e
-
SHA512
aaeb40b7677b8c063e0ceb5e4f087a8239bfc08b430b91c6183414c3c77b772db5c8e946a262ac4565b3c53c4b0496896dc25e4dcd31674608742665b34068e8
-
SSDEEP
12288:TPb3IWTZCjb2wwgk46nP2V1zOfbnDUsv9II5eSBd3tI9HytnBHkolSE:Fgwg+6q7D7v9dZB9tBzlSE
Static task
static1
Behavioral task
behavioral1
Sample
db400b937af777cfa71c97590436131d_JaffaCakes118.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
db400b937af777cfa71c97590436131d_JaffaCakes118.exe
Resource
win10v2004-20240802-en
Malware Config
Targets
-
-
Target
db400b937af777cfa71c97590436131d_JaffaCakes118
-
Size
812KB
-
MD5
db400b937af777cfa71c97590436131d
-
SHA1
a054d12a1eca5bd7ce0c3599a5927e2b53585e8d
-
SHA256
60b4785645b6fe46bd4ba0fddd0ef71b2246c836a50c1c6d62c3fe85c58aa64e
-
SHA512
aaeb40b7677b8c063e0ceb5e4f087a8239bfc08b430b91c6183414c3c77b772db5c8e946a262ac4565b3c53c4b0496896dc25e4dcd31674608742665b34068e8
-
SSDEEP
12288:TPb3IWTZCjb2wwgk46nP2V1zOfbnDUsv9II5eSBd3tI9HytnBHkolSE:Fgwg+6q7D7v9dZB9tBzlSE
-
Event Triggered Execution: Component Object Model Hijacking
Adversaries may establish persistence by executing malicious content triggered by hijacked references to Component Object Model (COM) objects.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-