Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
fe29bcf53ea50159802f6370db7f7d19_JaffaCakes118
-
Size
728KB
-
Sample
240929-kmzqtawgkr
-
MD5
fe29bcf53ea50159802f6370db7f7d19
-
SHA1
f3b20f6a4841e8fbda2123fdd6b97ffabe23b419
-
SHA256
c92c1c794a4a01ada14a4b77d004c809d8add118654139d7c6d9d5fbd080b0d0
-
SHA512
5121516bcfc8697ee9804e8af85571041625b7f31b6bb12f23e0a189188e6e510122666d400290e10d464d4bf728543989303b26ece3a5cf732a582075d15ec1
-
SSDEEP
12288:z2/I3CMZC4u8YBbY5zgHWHmt8qM3mmcKDgGeItoEc9GspWZhASRXHYnrmM:z2QSmCrmgHCmKqM3kKlFtov9GsqRXHYP
Malware Config
Targets
-
-
Target
fe29bcf53ea50159802f6370db7f7d19_JaffaCakes118
-
Size
728KB
-
MD5
fe29bcf53ea50159802f6370db7f7d19
-
SHA1
f3b20f6a4841e8fbda2123fdd6b97ffabe23b419
-
SHA256
c92c1c794a4a01ada14a4b77d004c809d8add118654139d7c6d9d5fbd080b0d0
-
SHA512
5121516bcfc8697ee9804e8af85571041625b7f31b6bb12f23e0a189188e6e510122666d400290e10d464d4bf728543989303b26ece3a5cf732a582075d15ec1
-
SSDEEP
12288:z2/I3CMZC4u8YBbY5zgHWHmt8qM3mmcKDgGeItoEc9GspWZhASRXHYnrmM:z2QSmCrmgHCmKqM3kKlFtov9GsqRXHYP
Score8/10-
Modifies Windows Firewall
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
MITRE ATT&CK Enterprise v15
Persistence
Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1Privilege Escalation
Create or Modify System Process
1Windows Service
1Event Triggered Execution
1Netsh Helper DLL
1