Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
fdb8a31a1b62f0d44177800dc8d171bf_JaffaCakes118
-
Size
196KB
-
Sample
240929-d5h3fs1dqh
-
MD5
fdb8a31a1b62f0d44177800dc8d171bf
-
SHA1
368e4b5bdff33bc59f4d97a5f16920daecfe9116
-
SHA256
8e23244126ab7ca324a2c11d1e3137d3c37f5a8b6a9867f71d8327a651f12980
-
SHA512
ed09c478fad9941deabe2ee7c846b2381dc0a35563f16497c63fb9cbf5da6cb786fb9a1ad2fe0b69863635e32b5d6c886380bed6e47962e19d6bca693eac6a02
-
SSDEEP
3072:o6aVnPybzV8Q3io0ce4LTI208YioBK9QRO8qeXQ:odVnPybzV8Oio0ctLTt08doLRO8qeg
Malware Config
Targets
-
-
Target
fdb8a31a1b62f0d44177800dc8d171bf_JaffaCakes118
-
Size
196KB
-
MD5
fdb8a31a1b62f0d44177800dc8d171bf
-
SHA1
368e4b5bdff33bc59f4d97a5f16920daecfe9116
-
SHA256
8e23244126ab7ca324a2c11d1e3137d3c37f5a8b6a9867f71d8327a651f12980
-
SHA512
ed09c478fad9941deabe2ee7c846b2381dc0a35563f16497c63fb9cbf5da6cb786fb9a1ad2fe0b69863635e32b5d6c886380bed6e47962e19d6bca693eac6a02
-
SSDEEP
3072:o6aVnPybzV8Q3io0ce4LTI208YioBK9QRO8qeXQ:odVnPybzV8Oio0ctLTt08doLRO8qeg
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2