Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    034309d15794ad626a52a3ef6906ec8d_JaffaCakes118

  • Size

    208KB

  • Sample

    240930-zxntmayhkc

  • MD5

    034309d15794ad626a52a3ef6906ec8d

  • SHA1

    424bd06c1238933d211417c4b7c8eab8fac63b56

  • SHA256

    b4b59223da181345025a08c5e8d4b953206b0a8cc71b9c287510fb9df7531496

  • SHA512

    e55163c25665597f2d2e650a0771a43835d90849e14c780466615439f841a45c4c82f35cee131f8802f9e5651d629e41cfd458bf1790c859c93fde49e4547d94

  • SSDEEP

    3072:Y9rsFWRzKx5mP2v8PjLa3uOoXDniXVA5F9TpYsSYnUV1EITIHZ2GgUOjdFCyL+lu:fkzKmP2USFXgF9qCUbbTIgGYJaH2Og

Malware Config

Targets

    • Target

      034309d15794ad626a52a3ef6906ec8d_JaffaCakes118

    • Size

      208KB

    • MD5

      034309d15794ad626a52a3ef6906ec8d

    • SHA1

      424bd06c1238933d211417c4b7c8eab8fac63b56

    • SHA256

      b4b59223da181345025a08c5e8d4b953206b0a8cc71b9c287510fb9df7531496

    • SHA512

      e55163c25665597f2d2e650a0771a43835d90849e14c780466615439f841a45c4c82f35cee131f8802f9e5651d629e41cfd458bf1790c859c93fde49e4547d94

    • SSDEEP

      3072:Y9rsFWRzKx5mP2v8PjLa3uOoXDniXVA5F9TpYsSYnUV1EITIHZ2GgUOjdFCyL+lu:fkzKmP2USFXgF9qCUbbTIgGYJaH2Og

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks