Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    dc5b50523a957f642b96eed93363f6b5_JaffaCakes118

  • Size

    38KB

  • Sample

    240912-qsxrasxajc

  • MD5

    dc5b50523a957f642b96eed93363f6b5

  • SHA1

    471ba19dec8d33057a73bbd04d0bf962b68f3fd6

  • SHA256

    fb9e34230f77529ed70cbbb9ef92d2d65ba379e7c795f41cf92b8650f4380338

  • SHA512

    4b6e129cf659fbc933394afa0301c7d6d6c8110d1ce48776e13ba88dcf5fc983ab0c6f14ece0a16d1892f9373614f78c6838cef4add74f806b51dcb5ca5d98b9

  • SSDEEP

    768:bOvHPRamDrCFnAcBDu4RMEGx8JPj2cBPkbtgxV6tm2/:bOncmDMnAcBDuk2x85j5mbtC6w2/

Malware Config

Targets

    • Target

      dc5b50523a957f642b96eed93363f6b5_JaffaCakes118

    • Size

      38KB

    • MD5

      dc5b50523a957f642b96eed93363f6b5

    • SHA1

      471ba19dec8d33057a73bbd04d0bf962b68f3fd6

    • SHA256

      fb9e34230f77529ed70cbbb9ef92d2d65ba379e7c795f41cf92b8650f4380338

    • SHA512

      4b6e129cf659fbc933394afa0301c7d6d6c8110d1ce48776e13ba88dcf5fc983ab0c6f14ece0a16d1892f9373614f78c6838cef4add74f806b51dcb5ca5d98b9

    • SSDEEP

      768:bOvHPRamDrCFnAcBDu4RMEGx8JPj2cBPkbtgxV6tm2/:bOncmDMnAcBDuk2x85j5mbtC6w2/

    • Disables service(s)

    • Stops running service(s)

    • Deletes itself

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks