Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
eab383f02280dc745cf46e859ee7628a_JaffaCakes118
-
Size
683KB
-
Sample
240919-gjjnmstdqe
-
MD5
eab383f02280dc745cf46e859ee7628a
-
SHA1
9bb8b25a689b8fa707c93db39ff8695f3a1984f9
-
SHA256
21a5f9220b588cabed4d86c3204c415fae4cee2ea35a0265adcf556979b81dc9
-
SHA512
2559ebd8e3a6643360f0445ad373c800dbdc3d08a934de2d4a1834b85b49fecf69329cdd35b6b9c6b0f2545a935f21ff3972b136fd973fbc1d20a1fb1c524bbd
-
SSDEEP
12288:apI1ozCEXgFQZ5O4GsLUfia4eiTxMovq6WuPCOlf5+V6u:yI1oz7gFGL/Uqbe6x5Ku6Op5+V6u
Static task
static1
Behavioral task
behavioral1
Sample
eab383f02280dc745cf46e859ee7628a_JaffaCakes118.exe
Resource
win7-20240729-en
Malware Config
Targets
-
-
Target
eab383f02280dc745cf46e859ee7628a_JaffaCakes118
-
Size
683KB
-
MD5
eab383f02280dc745cf46e859ee7628a
-
SHA1
9bb8b25a689b8fa707c93db39ff8695f3a1984f9
-
SHA256
21a5f9220b588cabed4d86c3204c415fae4cee2ea35a0265adcf556979b81dc9
-
SHA512
2559ebd8e3a6643360f0445ad373c800dbdc3d08a934de2d4a1834b85b49fecf69329cdd35b6b9c6b0f2545a935f21ff3972b136fd973fbc1d20a1fb1c524bbd
-
SSDEEP
12288:apI1ozCEXgFQZ5O4GsLUfia4eiTxMovq6WuPCOlf5+V6u:yI1oz7gFGL/Uqbe6x5Ku6Op5+V6u
-
Identifies VirtualBox via ACPI registry values (likely anti-VM)
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops desktop.ini file(s)
-
MITRE ATT&CK Enterprise v15
Defense Evasion
Modify Registry
1Subvert Trust Controls
1Install Root Certificate
1Virtualization/Sandbox Evasion
1