Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    f5501c4c5c8c992377780a9ff8c2d62f_JaffaCakes118

  • Size

    1.1MB

  • Sample

    240925-gdfpssxhql

  • MD5

    f5501c4c5c8c992377780a9ff8c2d62f

  • SHA1

    dc58697bb7c96951d6969927d25a8332aab712f3

  • SHA256

    c1bcfd4ab16809241ea602e18ec2405738ab56f54718a24367d2e01fff52a103

  • SHA512

    28d8659f46c107dae5d26101f42c98201d5608c9d5bc57f0f22319ff14ced407614821602ae036bbbaf8bdfc2bdbb499a057cc141d3376c437d0f9baa2c7f85e

  • SSDEEP

    24576:kUJa8KHWN7lQnMzhDncVo68OzXJHEYWBkGfDbJ06FYMFp:JlWWZQ0GrZHEFrLbJ0WH

Malware Config

Targets

    • Target

      f5501c4c5c8c992377780a9ff8c2d62f_JaffaCakes118

    • Size

      1.1MB

    • MD5

      f5501c4c5c8c992377780a9ff8c2d62f

    • SHA1

      dc58697bb7c96951d6969927d25a8332aab712f3

    • SHA256

      c1bcfd4ab16809241ea602e18ec2405738ab56f54718a24367d2e01fff52a103

    • SHA512

      28d8659f46c107dae5d26101f42c98201d5608c9d5bc57f0f22319ff14ced407614821602ae036bbbaf8bdfc2bdbb499a057cc141d3376c437d0f9baa2c7f85e

    • SSDEEP

      24576:kUJa8KHWN7lQnMzhDncVo68OzXJHEYWBkGfDbJ06FYMFp:JlWWZQ0GrZHEFrLbJ0WH

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Suspicious use of SetThreadContext

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks