Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    dba14b424e4eff3f56e3ec5bbf28beff_JaffaCakes118

  • Size

    572KB

  • Sample

    240912-ck4yrawbpj

  • MD5

    dba14b424e4eff3f56e3ec5bbf28beff

  • SHA1

    9489e2a64beb74d5434351fc10d78099f594f766

  • SHA256

    65cf64cdc4ce24ffa96b57c5c0fd2febfbfb7d8d5aa26a39f880548afe779d5d

  • SHA512

    550daee711e452d16f89d335c1b274d63920f5ca48b2c1ff1f45d18cdff23aea496695221dec203d3b1295a39846b318be2cb64e94cab8b5d8eb607e5908a24d

  • SSDEEP

    6144:USTnWThDk7U+HY2iiGSIFTc/iPcd8onjUDIZdQaoGM8hX/50kItRUXT+jH3ug5ml:3zWTD4oTC84AsvRNKJ4XyjXLXbG

Malware Config

Targets

    • Target

      dba14b424e4eff3f56e3ec5bbf28beff_JaffaCakes118

    • Size

      572KB

    • MD5

      dba14b424e4eff3f56e3ec5bbf28beff

    • SHA1

      9489e2a64beb74d5434351fc10d78099f594f766

    • SHA256

      65cf64cdc4ce24ffa96b57c5c0fd2febfbfb7d8d5aa26a39f880548afe779d5d

    • SHA512

      550daee711e452d16f89d335c1b274d63920f5ca48b2c1ff1f45d18cdff23aea496695221dec203d3b1295a39846b318be2cb64e94cab8b5d8eb607e5908a24d

    • SSDEEP

      6144:USTnWThDk7U+HY2iiGSIFTc/iPcd8onjUDIZdQaoGM8hX/50kItRUXT+jH3ug5ml:3zWTD4oTC84AsvRNKJ4XyjXLXbG

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

MITRE ATT&CK Enterprise v15

Tasks