Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    f982bb575ba66968c52bee025037085c_JaffaCakes118

  • Size

    191KB

  • Sample

    240927-cjg3lazcpk

  • MD5

    f982bb575ba66968c52bee025037085c

  • SHA1

    e378fbbc27e03a6756ff6c31ca147f15b879f899

  • SHA256

    8f1be4d249817876e6bbb833b24c8a052549578aa8d3c4d17f28dbdc5e548d19

  • SHA512

    5032dd00e23ec8ba841f876d52188aecad197bb4986acea6d358593be8c03fca0542d7b529e04d20f26d42913707299c49bdd03a74e159305f23b9944b5c0482

  • SSDEEP

    3072:n5eiXBEtdBcTBhbtjk0PiQWceVm7rSJDx6VxIo/YeylXe4dJM:oM2lEhbNjM7T0Vmo/slpq

Malware Config

Targets

    • Target

      f982bb575ba66968c52bee025037085c_JaffaCakes118

    • Size

      191KB

    • MD5

      f982bb575ba66968c52bee025037085c

    • SHA1

      e378fbbc27e03a6756ff6c31ca147f15b879f899

    • SHA256

      8f1be4d249817876e6bbb833b24c8a052549578aa8d3c4d17f28dbdc5e548d19

    • SHA512

      5032dd00e23ec8ba841f876d52188aecad197bb4986acea6d358593be8c03fca0542d7b529e04d20f26d42913707299c49bdd03a74e159305f23b9944b5c0482

    • SSDEEP

      3072:n5eiXBEtdBcTBhbtjk0PiQWceVm7rSJDx6VxIo/YeylXe4dJM:oM2lEhbNjM7T0Vmo/slpq

    • Modifies WinLogon for persistence

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks