Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
0266f98aa929d0177b07568c9decd5cf_JaffaCakes118
-
Size
244KB
-
Sample
240930-vnmgzszfqc
-
MD5
0266f98aa929d0177b07568c9decd5cf
-
SHA1
3f185cdecec6d329b128c4f0c2a7e9fca92881db
-
SHA256
ce944335b1a7d1efddc18f6bb1d4fa56c3203c6c325bcab2131546aea012c58f
-
SHA512
3dd9f5f74fab6048d3481ef72fee392af5819b8b23c0526e0a46a5e6e24b292beeac9fce23e2e423ab4bbd4c0af28384d40c683b3a3513ff4b9da7c474c6a190
-
SSDEEP
768:1lvMavcJPDPR1/8wbjMPkG1VuW/wqvRXMXp677yCzdXZRT2Nq1MaQnepMri14PGe:1RlUJP11/BlGVs4emEFbcP0
Malware Config
Targets
-
-
Target
0266f98aa929d0177b07568c9decd5cf_JaffaCakes118
-
Size
244KB
-
MD5
0266f98aa929d0177b07568c9decd5cf
-
SHA1
3f185cdecec6d329b128c4f0c2a7e9fca92881db
-
SHA256
ce944335b1a7d1efddc18f6bb1d4fa56c3203c6c325bcab2131546aea012c58f
-
SHA512
3dd9f5f74fab6048d3481ef72fee392af5819b8b23c0526e0a46a5e6e24b292beeac9fce23e2e423ab4bbd4c0af28384d40c683b3a3513ff4b9da7c474c6a190
-
SSDEEP
768:1lvMavcJPDPR1/8wbjMPkG1VuW/wqvRXMXp677yCzdXZRT2Nq1MaQnepMri14PGe:1RlUJP11/BlGVs4emEFbcP0
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2