Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    fe6f397a4e42b6588ffcd69008f5dab7_JaffaCakes118

  • Size

    732KB

  • Sample

    240929-nl22bswbqb

  • MD5

    fe6f397a4e42b6588ffcd69008f5dab7

  • SHA1

    260fcff1dc0b647ee72024951f3ca76c47a070a9

  • SHA256

    46aa339bc9df3ec731abe5469d4deb6401544d44194b742cab5c4b87752ebd55

  • SHA512

    62af8bec228c93559b237c9cedc6f26b00b57cf77bce08a2c7277ef223ad86815e144c1de3bf381101ea1e37e44383f4f25ccea04166565ee3da8624a495957f

  • SSDEEP

    12288:7e/AKslvmgByMNofgHTszl2axYE+JlunPJ7SdZ5wLvgNKZo2SmQOLkK:C/AKsYgBhufgzsU4H+JUgOLVZo2SmbLk

Score
9/10

Malware Config

Targets

    • Target

      fe6f397a4e42b6588ffcd69008f5dab7_JaffaCakes118

    • Size

      732KB

    • MD5

      fe6f397a4e42b6588ffcd69008f5dab7

    • SHA1

      260fcff1dc0b647ee72024951f3ca76c47a070a9

    • SHA256

      46aa339bc9df3ec731abe5469d4deb6401544d44194b742cab5c4b87752ebd55

    • SHA512

      62af8bec228c93559b237c9cedc6f26b00b57cf77bce08a2c7277ef223ad86815e144c1de3bf381101ea1e37e44383f4f25ccea04166565ee3da8624a495957f

    • SSDEEP

      12288:7e/AKslvmgByMNofgHTszl2axYE+JlunPJ7SdZ5wLvgNKZo2SmQOLkK:C/AKsYgBhufgzsU4H+JUgOLVZo2SmbLk

    Score
    9/10
    • Identifies VirtualBox via ACPI registry values (likely anti-VM)

    • Identifies Wine through registry keys

      Wine is a compatibility layer capable of running Windows applications, which can be used as sandboxing environment.

    • Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Enterprise v15

Tasks