Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    f55458d0bae25d75c373dc44151f1202_JaffaCakes118

  • Size

    30KB

  • Sample

    240925-gjwm7sycpl

  • MD5

    f55458d0bae25d75c373dc44151f1202

  • SHA1

    669cac856387720a954d4d302e5e5f6cce86caef

  • SHA256

    383267ce397acfe177c13126159a87e137174140585e01a7b3edfb5f89a6df41

  • SHA512

    5782336fb59ff634f8b7d075e783f4c5d3c900ff067924d60def55ae2c36d5ceeaa7c1e2c416768503cffef84ed978ed31603573c7da81a96c483bbebcf73f55

  • SSDEEP

    768:Q/g+Z8e0PFwHd/8IacVk5efVGGscWRQYSaV1obshj5ux:Q7HyGNacQefYJXxRhj5ux

Malware Config

Targets

    • Target

      f55458d0bae25d75c373dc44151f1202_JaffaCakes118

    • Size

      30KB

    • MD5

      f55458d0bae25d75c373dc44151f1202

    • SHA1

      669cac856387720a954d4d302e5e5f6cce86caef

    • SHA256

      383267ce397acfe177c13126159a87e137174140585e01a7b3edfb5f89a6df41

    • SHA512

      5782336fb59ff634f8b7d075e783f4c5d3c900ff067924d60def55ae2c36d5ceeaa7c1e2c416768503cffef84ed978ed31603573c7da81a96c483bbebcf73f55

    • SSDEEP

      768:Q/g+Z8e0PFwHd/8IacVk5efVGGscWRQYSaV1obshj5ux:Q7HyGNacQefYJXxRhj5ux

    • Server Software Component: Terminal Services DLL

    • Deletes itself

    • Loads dropped DLL

    • Drops file in System32 directory

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks