Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
fd1363bb704d390a0a0bb83031ccdb36_JaffaCakes118
-
Size
236KB
-
Sample
240928-y5jzzavcmj
-
MD5
fd1363bb704d390a0a0bb83031ccdb36
-
SHA1
d0656949ff609b501713123c720f26cf17fa677c
-
SHA256
24585c14b33dd2f3d79689388ac1a80276b02e222e28d979b7353806b80dc027
-
SHA512
b41484bab2a7dff534d9a4dcd6e3d7b730d13fa903995f01002e56289b597d552dbf0d087434ea289ddbad7882a5bf4fc5b00228957e140e60553f6deba4a8c4
-
SSDEEP
6144:t03XFuM4nLSgTh2IcymPCHWIlm1Fa1asHPncByoM5JP3T9h:tc1udnLSg03ymK2Ilm1F4a4kbM3PRh
Behavioral task
behavioral1
Sample
fd1363bb704d390a0a0bb83031ccdb36_JaffaCakes118.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
fd1363bb704d390a0a0bb83031ccdb36_JaffaCakes118.exe
Resource
win10v2004-20240802-en
Malware Config
Targets
-
-
Target
fd1363bb704d390a0a0bb83031ccdb36_JaffaCakes118
-
Size
236KB
-
MD5
fd1363bb704d390a0a0bb83031ccdb36
-
SHA1
d0656949ff609b501713123c720f26cf17fa677c
-
SHA256
24585c14b33dd2f3d79689388ac1a80276b02e222e28d979b7353806b80dc027
-
SHA512
b41484bab2a7dff534d9a4dcd6e3d7b730d13fa903995f01002e56289b597d552dbf0d087434ea289ddbad7882a5bf4fc5b00228957e140e60553f6deba4a8c4
-
SSDEEP
6144:t03XFuM4nLSgTh2IcymPCHWIlm1Fa1asHPncByoM5JP3T9h:tc1udnLSg03ymK2Ilm1F4a4kbM3PRh
Score6/10-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-
MITRE ATT&CK Enterprise v15
Defense Evasion
Modify Registry
1Pre-OS Boot
1Bootkit
1Subvert Trust Controls
1Install Root Certificate
1