Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
fb8e00c30c4d4b6101109dde261042b2_JaffaCakes118
-
Size
113KB
-
Sample
240928-fneptaybjk
-
MD5
fb8e00c30c4d4b6101109dde261042b2
-
SHA1
7f8c2e441f8602f8f8f59c184501c97752d6ee11
-
SHA256
f77aae4d6816430c41624cda854243b7785391d85bcf6f7845184a7c66817ba1
-
SHA512
a7c1f6af4164af01e9bf62493588251aaa23f2b6e77bc48667b959b60bcb89fa97955f601eecae01d7dc6be6e6238b7f136732b0cce5b776d16a6fd9f27f0cbd
-
SSDEEP
3072:fuyrHX1EedcfeO4iwQCxkhBzEpdVWNL/GgGlmldy:fuyrHX1XdpOTW3VWFGgZy
Static task
static1
Behavioral task
behavioral1
Sample
fb8e00c30c4d4b6101109dde261042b2_JaffaCakes118.exe
Resource
win7-20240729-en
Behavioral task
behavioral2
Sample
fb8e00c30c4d4b6101109dde261042b2_JaffaCakes118.exe
Resource
win10v2004-20240802-en
Malware Config
Targets
-
-
Target
fb8e00c30c4d4b6101109dde261042b2_JaffaCakes118
-
Size
113KB
-
MD5
fb8e00c30c4d4b6101109dde261042b2
-
SHA1
7f8c2e441f8602f8f8f59c184501c97752d6ee11
-
SHA256
f77aae4d6816430c41624cda854243b7785391d85bcf6f7845184a7c66817ba1
-
SHA512
a7c1f6af4164af01e9bf62493588251aaa23f2b6e77bc48667b959b60bcb89fa97955f601eecae01d7dc6be6e6238b7f136732b0cce5b776d16a6fd9f27f0cbd
-
SSDEEP
3072:fuyrHX1EedcfeO4iwQCxkhBzEpdVWNL/GgGlmldy:fuyrHX1XdpOTW3VWFGgZy
Score10/10-
ModiLoader, DBatLoader
ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.
-
ModiLoader Second Stage
-
ACProtect 1.3x - 1.4x DLL software
Detects file using ACProtect software.
-
Loads dropped DLL
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Abuse Elevation Control Mechanism
1Bypass User Account Control
1Defense Evasion
Abuse Elevation Control Mechanism
1Bypass User Account Control
1Impair Defenses
1Disable or Modify Tools
1Modify Registry
2