Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    ebdfbea915df9687e6e745a9dd4e816a_JaffaCakes118

  • Size

    36KB

  • Sample

    240919-wdn4ha1gke

  • MD5

    ebdfbea915df9687e6e745a9dd4e816a

  • SHA1

    8edfbf995b581a6ec241e8b22685592da96b11f7

  • SHA256

    8b5be3415040fedbbb321b730fa0f3d1f4f3344b5e4451f967c340ec623ce1bb

  • SHA512

    a915b8db6a054a26d2454ce954f5dbcab8be78fad3652ba530d290f160974a5734cedb2cac0ec137c89b023ddf1047c14cfc464c4a7987b45a2ec5f70cc6624d

  • SSDEEP

    768:QATJxFQM1+Bw8JrV4UYW50z4C6AXTzM7WyjiTd:QA3cBw8JrydM7W7J

Score
7/10

Malware Config

Targets

    • Target

      ebdfbea915df9687e6e745a9dd4e816a_JaffaCakes118

    • Size

      36KB

    • MD5

      ebdfbea915df9687e6e745a9dd4e816a

    • SHA1

      8edfbf995b581a6ec241e8b22685592da96b11f7

    • SHA256

      8b5be3415040fedbbb321b730fa0f3d1f4f3344b5e4451f967c340ec623ce1bb

    • SHA512

      a915b8db6a054a26d2454ce954f5dbcab8be78fad3652ba530d290f160974a5734cedb2cac0ec137c89b023ddf1047c14cfc464c4a7987b45a2ec5f70cc6624d

    • SSDEEP

      768:QATJxFQM1+Bw8JrV4UYW50z4C6AXTzM7WyjiTd:QA3cBw8JrydM7W7J

    Score
    7/10
    • Executes dropped EXE

    • Loads dropped DLL

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks