Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
ef1a0e3331d4326c83f6838f9af96b1d_JaffaCakes118
-
Size
25KB
-
Sample
240921-fjlybswcrp
-
MD5
ef1a0e3331d4326c83f6838f9af96b1d
-
SHA1
1b98a249fd4a8980865c308d2ea9787438e28227
-
SHA256
05d249b7ce480e92a5ffe8c91e7028e92b7b7ff949c13c6469d38afb1d49ca94
-
SHA512
e3dd1b7256eace56277f1883036eceba04528d4246208cc57c6b9ad9cbed2951cfb683177699cbab7653d956130faadea0ea72af433c6f7b8d75c8a732edf41c
-
SSDEEP
384:vXHdxz0C0EKqd+1xYQ2S9pRrxdMulz5w6OyMdFggl8YCmXBadPEYH8:fcC03qdSaQf7Bxqulabl98dt
Static task
static1
Behavioral task
behavioral1
Sample
ef1a0e3331d4326c83f6838f9af96b1d_JaffaCakes118.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
ef1a0e3331d4326c83f6838f9af96b1d_JaffaCakes118.exe
Resource
win10v2004-20240802-en
Malware Config
Targets
-
-
Target
ef1a0e3331d4326c83f6838f9af96b1d_JaffaCakes118
-
Size
25KB
-
MD5
ef1a0e3331d4326c83f6838f9af96b1d
-
SHA1
1b98a249fd4a8980865c308d2ea9787438e28227
-
SHA256
05d249b7ce480e92a5ffe8c91e7028e92b7b7ff949c13c6469d38afb1d49ca94
-
SHA512
e3dd1b7256eace56277f1883036eceba04528d4246208cc57c6b9ad9cbed2951cfb683177699cbab7653d956130faadea0ea72af433c6f7b8d75c8a732edf41c
-
SSDEEP
384:vXHdxz0C0EKqd+1xYQ2S9pRrxdMulz5w6OyMdFggl8YCmXBadPEYH8:fcC03qdSaQf7Bxqulabl98dt
Score7/10-
Executes dropped EXE
-
Loads dropped DLL
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Drops autorun.inf file
Malware can abuse Windows Autorun to spread further via attached volumes.
-
Drops file in System32 directory
-