Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
033a6d2b6ef4b2caf362017a163fa551_JaffaCakes118
-
Size
363KB
-
Sample
240930-zp6dpsvcpr
-
MD5
033a6d2b6ef4b2caf362017a163fa551
-
SHA1
29905c9c02facca403b1367dd892653dcbfcde19
-
SHA256
61a3c2c99ab9ce479cf37921066a4fa64f638200411789e5128821b0c366b080
-
SHA512
0c0843f55b0766a35b54c247eca5d7387f69b660a3fc28b6f6f88e1e0f4338a644746b0af8e8c90738a148cc8cfb80eaecfa0cd7af8f08fa87612adaeb76da9e
-
SSDEEP
6144:Z/L0kUoq1J19FwACAHu+UNl9/AlfEf3URNkAXehrjsNdMV26QF6L6hNfl:Z/L0kUnJ1UibUp/AlEf3sxXehrjs0RIt
Behavioral task
behavioral1
Sample
033a6d2b6ef4b2caf362017a163fa551_JaffaCakes118.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
033a6d2b6ef4b2caf362017a163fa551_JaffaCakes118.exe
Resource
win10v2004-20240802-en
Malware Config
Extracted
metasploit
encoder/fnstenv_mov
Targets
-
-
Target
033a6d2b6ef4b2caf362017a163fa551_JaffaCakes118
-
Size
363KB
-
MD5
033a6d2b6ef4b2caf362017a163fa551
-
SHA1
29905c9c02facca403b1367dd892653dcbfcde19
-
SHA256
61a3c2c99ab9ce479cf37921066a4fa64f638200411789e5128821b0c366b080
-
SHA512
0c0843f55b0766a35b54c247eca5d7387f69b660a3fc28b6f6f88e1e0f4338a644746b0af8e8c90738a148cc8cfb80eaecfa0cd7af8f08fa87612adaeb76da9e
-
SSDEEP
6144:Z/L0kUoq1J19FwACAHu+UNl9/AlfEf3URNkAXehrjsNdMV26QF6L6hNfl:Z/L0kUnJ1UibUp/AlEf3sxXehrjs0RIt
Score10/10-
MetaSploit
Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-