Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    0297e647dba58158438c1fbed5d0cbc2_JaffaCakes118

  • Size

    1.0MB

  • Sample

    240930-wjpl8ayall

  • MD5

    0297e647dba58158438c1fbed5d0cbc2

  • SHA1

    08b0b0ddf509a242f0a83d7dc8a3959bbc720ee3

  • SHA256

    0befa751e6e7773e5c10a7a164b32853851f6158a7ce275b0fd2baf821394b16

  • SHA512

    a36d49650efd273afdd9fc5c9777db189d29e12ad789ca7b01db746cd995661dabebb97cf2266704621568b15ed0c1c2ca9bf1188268a928af03a11599b4bfc8

  • SSDEEP

    24576:7wEsmYlus9hwv35nGOtSXJbRJWGoTo5pelJWck:77sus9hguJWGoTo5peaX

Malware Config

Targets

    • Target

      0297e647dba58158438c1fbed5d0cbc2_JaffaCakes118

    • Size

      1.0MB

    • MD5

      0297e647dba58158438c1fbed5d0cbc2

    • SHA1

      08b0b0ddf509a242f0a83d7dc8a3959bbc720ee3

    • SHA256

      0befa751e6e7773e5c10a7a164b32853851f6158a7ce275b0fd2baf821394b16

    • SHA512

      a36d49650efd273afdd9fc5c9777db189d29e12ad789ca7b01db746cd995661dabebb97cf2266704621568b15ed0c1c2ca9bf1188268a928af03a11599b4bfc8

    • SSDEEP

      24576:7wEsmYlus9hwv35nGOtSXJbRJWGoTo5pelJWck:77sus9hguJWGoTo5peaX

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks