Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
f9dacb74ed85f7c07d4754527f0987d8_JaffaCakes118
-
Size
733KB
-
Sample
240927-grsxaaybrn
-
MD5
f9dacb74ed85f7c07d4754527f0987d8
-
SHA1
74a05b5c790129b5f2e04d6ec2e0fe9a1ea2f25c
-
SHA256
b91bcb94d966b14ad2858834974cca63e3033f5d1f8c9bc3c50a5b87eed9c851
-
SHA512
8b3a40731ee9e2b25f97e25c492bc0472c66f2de895a4f5f62409a4102aff3135d425644922fe281a6acd59be9d6be23f03eb929a86ccf708eb5ebfb19776dee
-
SSDEEP
12288:13Fpj4rBRLukn+zKg2oOR2OQl5QAdmxQDgGeItGBV07XpWZhASRXHYnrm2:1VpUFRUgoOwOY5QAqQlFtWVAqRXHYrm2
Malware Config
Targets
-
-
Target
f9dacb74ed85f7c07d4754527f0987d8_JaffaCakes118
-
Size
733KB
-
MD5
f9dacb74ed85f7c07d4754527f0987d8
-
SHA1
74a05b5c790129b5f2e04d6ec2e0fe9a1ea2f25c
-
SHA256
b91bcb94d966b14ad2858834974cca63e3033f5d1f8c9bc3c50a5b87eed9c851
-
SHA512
8b3a40731ee9e2b25f97e25c492bc0472c66f2de895a4f5f62409a4102aff3135d425644922fe281a6acd59be9d6be23f03eb929a86ccf708eb5ebfb19776dee
-
SSDEEP
12288:13Fpj4rBRLukn+zKg2oOR2OQl5QAdmxQDgGeItGBV07XpWZhASRXHYnrm2:1VpUFRUgoOwOY5QAqQlFtWVAqRXHYrm2
Score8/10-
Modifies Windows Firewall
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
MITRE ATT&CK Enterprise v15
Persistence
Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1Privilege Escalation
Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1