Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
f5cdab872febdf30fcd564db5dc1d8b1_JaffaCakes118
-
Size
124KB
-
Sample
240925-mhcrlazgjr
-
MD5
f5cdab872febdf30fcd564db5dc1d8b1
-
SHA1
138cbf8bbd3592a5b83a38262fea051caf83b18c
-
SHA256
455d8976a66ca7f7f112ba59049d51a6e9d4e60ec6dc79a16fb0461980827750
-
SHA512
245a503e735a040f554582de7de133c6a552040049b373a7adab98db7d821857aa631641570eeb05f3f134155621efaaca215f94eaa0a77ea01f2b6013e9cbd6
-
SSDEEP
1536:zoZ7FFirWaYkiQixA+alh98t8aF9USvXjyuwo7JaS/:cZ7FFirWejH8tq8dwQd
Malware Config
Targets
-
-
Target
f5cdab872febdf30fcd564db5dc1d8b1_JaffaCakes118
-
Size
124KB
-
MD5
f5cdab872febdf30fcd564db5dc1d8b1
-
SHA1
138cbf8bbd3592a5b83a38262fea051caf83b18c
-
SHA256
455d8976a66ca7f7f112ba59049d51a6e9d4e60ec6dc79a16fb0461980827750
-
SHA512
245a503e735a040f554582de7de133c6a552040049b373a7adab98db7d821857aa631641570eeb05f3f134155621efaaca215f94eaa0a77ea01f2b6013e9cbd6
-
SSDEEP
1536:zoZ7FFirWaYkiQixA+alh98t8aF9USvXjyuwo7JaS/:cZ7FFirWejH8tq8dwQd
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2