Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
f65ab7cd6edd0e28e8af9283246b30a8_JaffaCakes118
-
Size
372KB
-
Sample
240925-tdtb4sxcpa
-
MD5
f65ab7cd6edd0e28e8af9283246b30a8
-
SHA1
40de8a9cf006d6f73ccd5ff992ec857fc3840817
-
SHA256
c2aee86483687e5cc13f93b24746a76d362f23ce57096802e83bb82c66983789
-
SHA512
202299e5e28544833830a20b8a71b146f6b0fb0905c262c3550acb5f522679d931ea157317b2fb6b5fe86dc8a9ee549696f263bfc8154a2502544c4f51fbc2a9
-
SSDEEP
6144:eG78LjzOANvSAsQLqF9pXMiY3sGB6UduRfLtcJ:p7kmAN6omFMb3sGB6UduRfLaJ
Behavioral task
behavioral1
Sample
f65ab7cd6edd0e28e8af9283246b30a8_JaffaCakes118.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
f65ab7cd6edd0e28e8af9283246b30a8_JaffaCakes118.exe
Resource
win10v2004-20240802-en
Malware Config
Targets
-
-
Target
f65ab7cd6edd0e28e8af9283246b30a8_JaffaCakes118
-
Size
372KB
-
MD5
f65ab7cd6edd0e28e8af9283246b30a8
-
SHA1
40de8a9cf006d6f73ccd5ff992ec857fc3840817
-
SHA256
c2aee86483687e5cc13f93b24746a76d362f23ce57096802e83bb82c66983789
-
SHA512
202299e5e28544833830a20b8a71b146f6b0fb0905c262c3550acb5f522679d931ea157317b2fb6b5fe86dc8a9ee549696f263bfc8154a2502544c4f51fbc2a9
-
SSDEEP
6144:eG78LjzOANvSAsQLqF9pXMiY3sGB6UduRfLtcJ:p7kmAN6omFMb3sGB6UduRfLaJ
Score10/10-
Modifies firewall policy service
-
Boot or Logon Autostart Execution: Active Setup
Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1Active Setup
1Create or Modify System Process
1Windows Service
1Privilege Escalation
Boot or Logon Autostart Execution
1Active Setup
1Create or Modify System Process
1Windows Service
1