Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    03c511a86315cb779ace3097e5b4123f_JaffaCakes118

  • Size

    890KB

  • Sample

    241001-avx7vaweka

  • MD5

    03c511a86315cb779ace3097e5b4123f

  • SHA1

    786163c803821509398ab908d27a82a439e3eb46

  • SHA256

    2e7ce1473f728a7a2d337a29932258ba4dcd0efab4309818a857d528a532cb96

  • SHA512

    c9d815a61b01fa83e0bb18137343f73d7f6f35a0423100357422852a8ee73c358c0067b4e65a5064cf2f8dcd7777ba43724ea8c3f008de72361d523242bc7c71

  • SSDEEP

    12288:awBPammVkRJVqT+5IS3o/pdZhDy1ckDLPydi+mamrlywJDGvNZgt7Jm74C3Lzuqh:sqRJVM+5K/pd3DnkWQFlBVyN67EhLaqh

Malware Config

Targets

    • Target

      03c511a86315cb779ace3097e5b4123f_JaffaCakes118

    • Size

      890KB

    • MD5

      03c511a86315cb779ace3097e5b4123f

    • SHA1

      786163c803821509398ab908d27a82a439e3eb46

    • SHA256

      2e7ce1473f728a7a2d337a29932258ba4dcd0efab4309818a857d528a532cb96

    • SHA512

      c9d815a61b01fa83e0bb18137343f73d7f6f35a0423100357422852a8ee73c358c0067b4e65a5064cf2f8dcd7777ba43724ea8c3f008de72361d523242bc7c71

    • SSDEEP

      12288:awBPammVkRJVqT+5IS3o/pdZhDy1ckDLPydi+mamrlywJDGvNZgt7Jm74C3Lzuqh:sqRJVM+5K/pd3DnkWQFlBVyN67EhLaqh

    • Event Triggered Execution: Component Object Model Hijacking

      Adversaries may establish persistence by executing malicious content triggered by hijacked references to Component Object Model (COM) objects.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Checks whether UAC is enabled

MITRE ATT&CK Enterprise v15

Tasks