Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    ffd166edd2c178036ff93d2e78e3f626_JaffaCakes118

  • Size

    810KB

  • Sample

    240930-dgbngayere

  • MD5

    ffd166edd2c178036ff93d2e78e3f626

  • SHA1

    953de1c3a36de9657d23c917ef6cff81f617df1a

  • SHA256

    e131feb690744d88736328879d6da722a30e8e50ad926a72859ceb8f987d58b8

  • SHA512

    5e6531dc08b6798b07dfe1dac7023a333e5c1b06197d3645a6e095cf2cd3c20740eb631e1f6ee2cd19ad4b8d79937a2224c7391a83c9fd81042bdaf30fd43704

  • SSDEEP

    24576:uRXhWDXioHcLFUtsBloIzCzz0OTxxFF/U5yXP:CsDP+Ftoq0wU5iwP

Malware Config

Targets

    • Target

      ffd166edd2c178036ff93d2e78e3f626_JaffaCakes118

    • Size

      810KB

    • MD5

      ffd166edd2c178036ff93d2e78e3f626

    • SHA1

      953de1c3a36de9657d23c917ef6cff81f617df1a

    • SHA256

      e131feb690744d88736328879d6da722a30e8e50ad926a72859ceb8f987d58b8

    • SHA512

      5e6531dc08b6798b07dfe1dac7023a333e5c1b06197d3645a6e095cf2cd3c20740eb631e1f6ee2cd19ad4b8d79937a2224c7391a83c9fd81042bdaf30fd43704

    • SSDEEP

      24576:uRXhWDXioHcLFUtsBloIzCzz0OTxxFF/U5yXP:CsDP+Ftoq0wU5iwP

    • Event Triggered Execution: Component Object Model Hijacking

      Adversaries may establish persistence by executing malicious content triggered by hijacked references to Component Object Model (COM) objects.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Checks whether UAC is enabled

MITRE ATT&CK Enterprise v15

Tasks