Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    fd63b4bc204a48de9571567c56c84b7a_JaffaCakes118

  • Size

    17.0MB

  • Sample

    240928-3v18qa1fnl

  • MD5

    fd63b4bc204a48de9571567c56c84b7a

  • SHA1

    7edcca04f91b23d060a57a2973c78319b7855c89

  • SHA256

    d4265892e76c9b67e2615fada900070758b341321ab3942766bd772bb16700cb

  • SHA512

    beccccea1b7800f325632608b1fa4640f59452d45ba0c999c2badccee46ab2fa7f2c174b47519f7ebcedfd3e861c680f161c7b02219c7d92a4b34e028120d23c

  • SSDEEP

    393216:76rrO8N8FiT1Lsz5yCPEgiIwyPdeRvdho3S:2jm61Qz5yCPxwadedz

Malware Config

Targets

    • Target

      fd63b4bc204a48de9571567c56c84b7a_JaffaCakes118

    • Size

      17.0MB

    • MD5

      fd63b4bc204a48de9571567c56c84b7a

    • SHA1

      7edcca04f91b23d060a57a2973c78319b7855c89

    • SHA256

      d4265892e76c9b67e2615fada900070758b341321ab3942766bd772bb16700cb

    • SHA512

      beccccea1b7800f325632608b1fa4640f59452d45ba0c999c2badccee46ab2fa7f2c174b47519f7ebcedfd3e861c680f161c7b02219c7d92a4b34e028120d23c

    • SSDEEP

      393216:76rrO8N8FiT1Lsz5yCPEgiIwyPdeRvdho3S:2jm61Qz5yCPxwadedz

    • Domain associated with commercial stalkerware software, includes indicators from echap.eu.org

    • Queries information about active data network

    • Queries information about the current Wi-Fi connection

      Application may abuse the framework's APIs to collect information about the current Wi-Fi connection.

    • Queries the unique device ID (IMEI, MEID, IMSI)

    • Reads information about phone network operator.

MITRE ATT&CK Mobile v15

Tasks