Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    033a6d2b6ef4b2caf362017a163fa551_JaffaCakes118

  • Size

    363KB

  • Sample

    240930-zp6dpsvcpr

  • MD5

    033a6d2b6ef4b2caf362017a163fa551

  • SHA1

    29905c9c02facca403b1367dd892653dcbfcde19

  • SHA256

    61a3c2c99ab9ce479cf37921066a4fa64f638200411789e5128821b0c366b080

  • SHA512

    0c0843f55b0766a35b54c247eca5d7387f69b660a3fc28b6f6f88e1e0f4338a644746b0af8e8c90738a148cc8cfb80eaecfa0cd7af8f08fa87612adaeb76da9e

  • SSDEEP

    6144:Z/L0kUoq1J19FwACAHu+UNl9/AlfEf3URNkAXehrjsNdMV26QF6L6hNfl:Z/L0kUnJ1UibUp/AlEf3sxXehrjs0RIt

Malware Config

Extracted

Family

metasploit

Version

encoder/fnstenv_mov

Targets

    • Target

      033a6d2b6ef4b2caf362017a163fa551_JaffaCakes118

    • Size

      363KB

    • MD5

      033a6d2b6ef4b2caf362017a163fa551

    • SHA1

      29905c9c02facca403b1367dd892653dcbfcde19

    • SHA256

      61a3c2c99ab9ce479cf37921066a4fa64f638200411789e5128821b0c366b080

    • SHA512

      0c0843f55b0766a35b54c247eca5d7387f69b660a3fc28b6f6f88e1e0f4338a644746b0af8e8c90738a148cc8cfb80eaecfa0cd7af8f08fa87612adaeb76da9e

    • SSDEEP

      6144:Z/L0kUoq1J19FwACAHu+UNl9/AlfEf3URNkAXehrjsNdMV26QF6L6hNfl:Z/L0kUnJ1UibUp/AlEf3sxXehrjs0RIt

    • MetaSploit

      Detected malicious payload which is part of the Metasploit Framework, likely generated with msfvenom or similar.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks