Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
f655af8f16d632c0eba6b1db3a9e9432_JaffaCakes118
-
Size
731KB
-
Sample
240925-s6hweawhqb
-
MD5
f655af8f16d632c0eba6b1db3a9e9432
-
SHA1
31a98d1bd57cbec161e67476a8fdd428028fe6d1
-
SHA256
0f181c8e8d91368485686a7cd3e58ceb3676562882ea25cde566a3da1a9c5f15
-
SHA512
42e8822429fac23c67736753d9d137c846367c9850119fbbbaa870f9f177c4e109b9022635eb9473d5c6d68aeb5042a9b96d4747b695578f5a0b7ed560198aad
-
SSDEEP
12288:Jaingtd/9iCpVEZxzraxdUdpmwFmjnDgGeIttwoPR5pWZhAIRXHYnrmo:JaigD/ArravUdswwnlFttwYQRXHYrmo
Malware Config
Targets
-
-
Target
f655af8f16d632c0eba6b1db3a9e9432_JaffaCakes118
-
Size
731KB
-
MD5
f655af8f16d632c0eba6b1db3a9e9432
-
SHA1
31a98d1bd57cbec161e67476a8fdd428028fe6d1
-
SHA256
0f181c8e8d91368485686a7cd3e58ceb3676562882ea25cde566a3da1a9c5f15
-
SHA512
42e8822429fac23c67736753d9d137c846367c9850119fbbbaa870f9f177c4e109b9022635eb9473d5c6d68aeb5042a9b96d4747b695578f5a0b7ed560198aad
-
SSDEEP
12288:Jaingtd/9iCpVEZxzraxdUdpmwFmjnDgGeIttwoPR5pWZhAIRXHYnrmo:JaigD/ArravUdswwnlFttwYQRXHYrmo
Score8/10-
Modifies Windows Firewall
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
MITRE ATT&CK Enterprise v15
Persistence
Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1Privilege Escalation
Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1