Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    da710b76949082f7dbe17dca13bcf18e_JaffaCakes118

  • Size

    396KB

  • Sample

    240911-qpzfqatakf

  • MD5

    da710b76949082f7dbe17dca13bcf18e

  • SHA1

    a915fe07447e44a73d35019d9fa8a0d2e9784264

  • SHA256

    26e64ee5c935d37e65a8ccf28c51257715e9d6b90cabf1e8c290843c17d8785a

  • SHA512

    7a08334376a76975d51ba33c248dddab0238f0bcce2c1b488a5d3445b570d3e02636aa1a40dba72fe45c75ab499edc2ded0ac4c1949c0090deba8d61bb635441

  • SSDEEP

    6144:ht6ELaO9T9xVNEF2idZecnl20lHRxp3gxsnJMDY8AiDfthaBKDHdOVa:XfLbxMF3Z4mxx8sng5rjaBva

Malware Config

Targets

    • Target

      da710b76949082f7dbe17dca13bcf18e_JaffaCakes118

    • Size

      396KB

    • MD5

      da710b76949082f7dbe17dca13bcf18e

    • SHA1

      a915fe07447e44a73d35019d9fa8a0d2e9784264

    • SHA256

      26e64ee5c935d37e65a8ccf28c51257715e9d6b90cabf1e8c290843c17d8785a

    • SHA512

      7a08334376a76975d51ba33c248dddab0238f0bcce2c1b488a5d3445b570d3e02636aa1a40dba72fe45c75ab499edc2ded0ac4c1949c0090deba8d61bb635441

    • SSDEEP

      6144:ht6ELaO9T9xVNEF2idZecnl20lHRxp3gxsnJMDY8AiDfthaBKDHdOVa:XfLbxMF3Z4mxx8sng5rjaBva

    • Server Software Component: Terminal Services DLL

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Adds Run key to start application

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks