Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
f07e293cfd3af6c38e4e6bf6ccb92a3b_JaffaCakes118
-
Size
248KB
-
Sample
240921-ylgqhazgmr
-
MD5
f07e293cfd3af6c38e4e6bf6ccb92a3b
-
SHA1
d919de2a5e2de10dd038eff37ae45dfc400289c4
-
SHA256
b136f2e7c8e75a5beb54a30697974475763d61d806ea89562602a8ba56490426
-
SHA512
2c62d47cff8e5fde5ec68e1a3495ad675f1fa92b7fd115139b1a4ea67a85b75a06de9572078fe970751ca94617d3543099f8c594e4926e69b768ddd1808c0772
-
SSDEEP
1536:4t6u3c9YmmU9YDkl8NMhgoAeK6Kg0xCZTqUX3wkSQ7tNXZKl/YWAISDKow5z/GHD:A6u3kaUWDklPANxCLX3uDcdZDXp
Malware Config
Targets
-
-
Target
f07e293cfd3af6c38e4e6bf6ccb92a3b_JaffaCakes118
-
Size
248KB
-
MD5
f07e293cfd3af6c38e4e6bf6ccb92a3b
-
SHA1
d919de2a5e2de10dd038eff37ae45dfc400289c4
-
SHA256
b136f2e7c8e75a5beb54a30697974475763d61d806ea89562602a8ba56490426
-
SHA512
2c62d47cff8e5fde5ec68e1a3495ad675f1fa92b7fd115139b1a4ea67a85b75a06de9572078fe970751ca94617d3543099f8c594e4926e69b768ddd1808c0772
-
SSDEEP
1536:4t6u3c9YmmU9YDkl8NMhgoAeK6Kg0xCZTqUX3wkSQ7tNXZKl/YWAISDKow5z/GHD:A6u3kaUWDklPANxCLX3uDcdZDXp
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2