Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    031cba18d943fad5310d94ebf5fb2606_JaffaCakes118

  • Size

    915KB

  • Sample

    240930-y27a4atcnl

  • MD5

    031cba18d943fad5310d94ebf5fb2606

  • SHA1

    9592eb1d810345f2b0e99caf705ef6deb0e87db2

  • SHA256

    e13766864c26f402ce7b7c73b1ce44cb29fb50dac8a30c5d50617ffcf8276029

  • SHA512

    93055215c56a7ee4d7243e9c8d219643b96ab530925992b2ff6aa499dc2ab77865c5f80e077507071cb19b541b76d94d00de31754959f592f17c4389f4aca557

  • SSDEEP

    12288:rbpHYUKy5U1bo9t8DMRSW9vbciUiLuAvOxMt11i27Qitj1g:r5sJo6YrFUiyAak11Ltj1g

Malware Config

Targets

    • Target

      031cba18d943fad5310d94ebf5fb2606_JaffaCakes118

    • Size

      915KB

    • MD5

      031cba18d943fad5310d94ebf5fb2606

    • SHA1

      9592eb1d810345f2b0e99caf705ef6deb0e87db2

    • SHA256

      e13766864c26f402ce7b7c73b1ce44cb29fb50dac8a30c5d50617ffcf8276029

    • SHA512

      93055215c56a7ee4d7243e9c8d219643b96ab530925992b2ff6aa499dc2ab77865c5f80e077507071cb19b541b76d94d00de31754959f592f17c4389f4aca557

    • SSDEEP

      12288:rbpHYUKy5U1bo9t8DMRSW9vbciUiLuAvOxMt11i27Qitj1g:r5sJo6YrFUiyAak11Ltj1g

    • Executes dropped EXE

    • Adds Run key to start application

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks