Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    dc554d6343a952e5f269ab6fe983447d_JaffaCakes118

  • Size

    356KB

  • Sample

    240912-qc4jxawejn

  • MD5

    dc554d6343a952e5f269ab6fe983447d

  • SHA1

    fa765406fe4e041de54f9414936875151c1f35f7

  • SHA256

    6fe72dc7e0a3ec67205bf8ec520724bd99411d0c1122d6fb1ae94706a162d0cd

  • SHA512

    b997ad381856897d7e31a82c3a781a20307c998ae66cc38cee30999c3460173175f13107fe9304fbfe2b1d9122ca522a41b07f55fd423b88780cdc058992c0fa

  • SSDEEP

    6144:7vbx8gUHPq+m6d002UoNlGxSSrJGUOcUURynzqiIKpe:7dUHyj6WjblASeBOyRynt0

Malware Config

Targets

    • Target

      dc554d6343a952e5f269ab6fe983447d_JaffaCakes118

    • Size

      356KB

    • MD5

      dc554d6343a952e5f269ab6fe983447d

    • SHA1

      fa765406fe4e041de54f9414936875151c1f35f7

    • SHA256

      6fe72dc7e0a3ec67205bf8ec520724bd99411d0c1122d6fb1ae94706a162d0cd

    • SHA512

      b997ad381856897d7e31a82c3a781a20307c998ae66cc38cee30999c3460173175f13107fe9304fbfe2b1d9122ca522a41b07f55fd423b88780cdc058992c0fa

    • SSDEEP

      6144:7vbx8gUHPq+m6d002UoNlGxSSrJGUOcUURynzqiIKpe:7dUHyj6WjblASeBOyRynt0

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks