Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    da498be635503676449213ed619c6dc6_JaffaCakes118

  • Size

    167KB

  • Sample

    240911-nz2bysyhlh

  • MD5

    da498be635503676449213ed619c6dc6

  • SHA1

    be5f5d8edb160a48dd92760536f2410fd3b9b85b

  • SHA256

    930815ddee6e081b4aee491bc36916634a9bff79fe412cea01163bb848e39b32

  • SHA512

    c0a87bd7eab349ba4d5728caf1adc6649f510870354c219d968829ab0aed4fcc9f85be28cbd7de33fc5f982f6cff9e6c5983527b9c1a2a18cad21ac18afb06f7

  • SSDEEP

    3072:jPD71ztDo35yC7qgPU4dHn3vmL/YupHw/cIS21gvwxoZZZ:jPt23g1A3vmLgupQ0AnxoZ

Malware Config

Targets

    • Target

      da498be635503676449213ed619c6dc6_JaffaCakes118

    • Size

      167KB

    • MD5

      da498be635503676449213ed619c6dc6

    • SHA1

      be5f5d8edb160a48dd92760536f2410fd3b9b85b

    • SHA256

      930815ddee6e081b4aee491bc36916634a9bff79fe412cea01163bb848e39b32

    • SHA512

      c0a87bd7eab349ba4d5728caf1adc6649f510870354c219d968829ab0aed4fcc9f85be28cbd7de33fc5f982f6cff9e6c5983527b9c1a2a18cad21ac18afb06f7

    • SSDEEP

      3072:jPD71ztDo35yC7qgPU4dHn3vmL/YupHw/cIS21gvwxoZZZ:jPt23g1A3vmLgupQ0AnxoZ

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks