Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
fe6f397a4e42b6588ffcd69008f5dab7_JaffaCakes118
-
Size
732KB
-
Sample
240929-nl22bswbqb
-
MD5
fe6f397a4e42b6588ffcd69008f5dab7
-
SHA1
260fcff1dc0b647ee72024951f3ca76c47a070a9
-
SHA256
46aa339bc9df3ec731abe5469d4deb6401544d44194b742cab5c4b87752ebd55
-
SHA512
62af8bec228c93559b237c9cedc6f26b00b57cf77bce08a2c7277ef223ad86815e144c1de3bf381101ea1e37e44383f4f25ccea04166565ee3da8624a495957f
-
SSDEEP
12288:7e/AKslvmgByMNofgHTszl2axYE+JlunPJ7SdZ5wLvgNKZo2SmQOLkK:C/AKsYgBhufgzsU4H+JUgOLVZo2SmbLk
Static task
static1
Behavioral task
behavioral1
Sample
fe6f397a4e42b6588ffcd69008f5dab7_JaffaCakes118.dll
Resource
win7-20240903-en
Malware Config
Targets
-
-
Target
fe6f397a4e42b6588ffcd69008f5dab7_JaffaCakes118
-
Size
732KB
-
MD5
fe6f397a4e42b6588ffcd69008f5dab7
-
SHA1
260fcff1dc0b647ee72024951f3ca76c47a070a9
-
SHA256
46aa339bc9df3ec731abe5469d4deb6401544d44194b742cab5c4b87752ebd55
-
SHA512
62af8bec228c93559b237c9cedc6f26b00b57cf77bce08a2c7277ef223ad86815e144c1de3bf381101ea1e37e44383f4f25ccea04166565ee3da8624a495957f
-
SSDEEP
12288:7e/AKslvmgByMNofgHTszl2axYE+JlunPJ7SdZ5wLvgNKZo2SmQOLkK:C/AKsYgBhufgzsU4H+JUgOLVZo2SmbLk
-
Identifies VirtualBox via ACPI registry values (likely anti-VM)
-
Identifies Wine through registry keys
Wine is a compatibility layer capable of running Windows applications, which can be used as sandboxing environment.
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-