Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
dc73b644eb2e62a7a3e11afbdbed27f7_JaffaCakes118
-
Size
434KB
-
Sample
240912-r624lszcnf
-
MD5
dc73b644eb2e62a7a3e11afbdbed27f7
-
SHA1
41e2a8468e566b4cd299f6367ccc079ff9455f78
-
SHA256
4e39e75de2f3b86751c809a775932553fb22d92c056f6ebd5fe1dd8b650c5e45
-
SHA512
84b4a8b77714da676fa7c952ac834e2e3143a7eab1c2a1ecf4087bbc292a7a7a3ecbcc1ca7e5e9fb1513be46cbab6ad98f4b11d691bde8a1bacfc7376e9f5cc0
-
SSDEEP
6144:upfaoK52wqWbgC3aNj4aDucHpr2wo4Ad88kO1SysrLmGx5mCy2B29sK:g77wqDQqj4aDu/yAduO1JsrfBy2s1
Static task
static1
Behavioral task
behavioral1
Sample
dc73b644eb2e62a7a3e11afbdbed27f7_JaffaCakes118.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
dc73b644eb2e62a7a3e11afbdbed27f7_JaffaCakes118.exe
Resource
win10v2004-20240802-en
Malware Config
Targets
-
-
Target
dc73b644eb2e62a7a3e11afbdbed27f7_JaffaCakes118
-
Size
434KB
-
MD5
dc73b644eb2e62a7a3e11afbdbed27f7
-
SHA1
41e2a8468e566b4cd299f6367ccc079ff9455f78
-
SHA256
4e39e75de2f3b86751c809a775932553fb22d92c056f6ebd5fe1dd8b650c5e45
-
SHA512
84b4a8b77714da676fa7c952ac834e2e3143a7eab1c2a1ecf4087bbc292a7a7a3ecbcc1ca7e5e9fb1513be46cbab6ad98f4b11d691bde8a1bacfc7376e9f5cc0
-
SSDEEP
6144:upfaoK52wqWbgC3aNj4aDucHpr2wo4Ad88kO1SysrLmGx5mCy2B29sK:g77wqDQqj4aDu/yAduO1JsrfBy2s1
Score6/10-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-