Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
dc7a64ce96853f57571304bd8fa938e2_JaffaCakes118
-
Size
731KB
-
Sample
240912-sf4eeszhle
-
MD5
dc7a64ce96853f57571304bd8fa938e2
-
SHA1
5fd0afcda16bb280d2cf2cc993397855179c397e
-
SHA256
02e699bdc1cc2d611c51170fd18c9e34e868c728e46dc955dce994866e09fd01
-
SHA512
a53781495974083c9d9d8df1c7ca4035f09c27e5027a8299ddf342f3e8e7d9b8d022bb23ce4d184133045bfa351e09fab6c126597e68dfafd2dc2ae0d426f86e
-
SSDEEP
12288:Jaingtd/9iCpVEZxzraxdUdpmBFmjnDgGeIttwoPR5pWZhAIRXHYnrmQ:JaigD/ArravUdsBwnlFttwYQRXHYrmQ
Malware Config
Targets
-
-
Target
dc7a64ce96853f57571304bd8fa938e2_JaffaCakes118
-
Size
731KB
-
MD5
dc7a64ce96853f57571304bd8fa938e2
-
SHA1
5fd0afcda16bb280d2cf2cc993397855179c397e
-
SHA256
02e699bdc1cc2d611c51170fd18c9e34e868c728e46dc955dce994866e09fd01
-
SHA512
a53781495974083c9d9d8df1c7ca4035f09c27e5027a8299ddf342f3e8e7d9b8d022bb23ce4d184133045bfa351e09fab6c126597e68dfafd2dc2ae0d426f86e
-
SSDEEP
12288:Jaingtd/9iCpVEZxzraxdUdpmBFmjnDgGeIttwoPR5pWZhAIRXHYnrmQ:JaigD/ArravUdsBwnlFttwYQRXHYrmQ
Score8/10-
Modifies Windows Firewall
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
MITRE ATT&CK Enterprise v15
Persistence
Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1Privilege Escalation
Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1