Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
eabf85f17e04e702dd5a3c52a27810a7_JaffaCakes118
-
Size
1.4MB
-
Sample
240919-g3q7tsvepk
-
MD5
eabf85f17e04e702dd5a3c52a27810a7
-
SHA1
1c566c56e479c460f52926890c0cc9ae10da2d0c
-
SHA256
4611720595e7135ac2727fababd0cc0ea238fcfb01e44222d805de94fc8a9967
-
SHA512
b3dc128968e5090e5eda3bf978e9475587c42c8995f2f7b4d4b9450706558c91815ded2e840b792f6ac9e137250e258e5ce5520e7f48bde8f253b47e7e990b34
-
SSDEEP
24576:21dHXRwSGDxmaSgmPbTqH7S/LNeIYTzOr+nLBV6t9nBahpj10Yd:21dHhwSGDIax7oezOqtVYEh0S
Static task
static1
Behavioral task
behavioral1
Sample
eabf85f17e04e702dd5a3c52a27810a7_JaffaCakes118.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
eabf85f17e04e702dd5a3c52a27810a7_JaffaCakes118.exe
Resource
win10v2004-20240802-en
Malware Config
Targets
-
-
Target
eabf85f17e04e702dd5a3c52a27810a7_JaffaCakes118
-
Size
1.4MB
-
MD5
eabf85f17e04e702dd5a3c52a27810a7
-
SHA1
1c566c56e479c460f52926890c0cc9ae10da2d0c
-
SHA256
4611720595e7135ac2727fababd0cc0ea238fcfb01e44222d805de94fc8a9967
-
SHA512
b3dc128968e5090e5eda3bf978e9475587c42c8995f2f7b4d4b9450706558c91815ded2e840b792f6ac9e137250e258e5ce5520e7f48bde8f253b47e7e990b34
-
SSDEEP
24576:21dHXRwSGDxmaSgmPbTqH7S/LNeIYTzOr+nLBV6t9nBahpj10Yd:21dHhwSGDIax7oezOqtVYEh0S
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Indicator Removal: File Deletion
Adversaries may delete files left behind by the actions of their intrusion activity.
-
Drops file in System32 directory
-