Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    f628e30465045b918b317cb6ce5d26c5_JaffaCakes118

  • Size

    288KB

  • Sample

    240925-q9c38asdja

  • MD5

    f628e30465045b918b317cb6ce5d26c5

  • SHA1

    b40e4d8876d6605a8560c89503f2f9372dd5d0b2

  • SHA256

    669111720967f13e56894548d36c16b7a1fdbfbed27abc2879121c60674b3cac

  • SHA512

    7f632ad3cc67c8b01372b5cfad2c615a9f9fe6542420a0f57b10e141010d956e4313cd8b32786f55b362d370990819ed17d45e947a9c09d9f96beac67fb3c7c3

  • SSDEEP

    6144:qYYgeB/HoK7FjdXq0hkyh/Jfwdq6HMC4fxVJh5S:q4eB3FHkyl54Hb4LJe

Malware Config

Targets

    • Target

      f628e30465045b918b317cb6ce5d26c5_JaffaCakes118

    • Size

      288KB

    • MD5

      f628e30465045b918b317cb6ce5d26c5

    • SHA1

      b40e4d8876d6605a8560c89503f2f9372dd5d0b2

    • SHA256

      669111720967f13e56894548d36c16b7a1fdbfbed27abc2879121c60674b3cac

    • SHA512

      7f632ad3cc67c8b01372b5cfad2c615a9f9fe6542420a0f57b10e141010d956e4313cd8b32786f55b362d370990819ed17d45e947a9c09d9f96beac67fb3c7c3

    • SSDEEP

      6144:qYYgeB/HoK7FjdXq0hkyh/Jfwdq6HMC4fxVJh5S:q4eB3FHkyl54Hb4LJe

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

MITRE ATT&CK Enterprise v15

Tasks