Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
042ba5007655395fcedc0e934cdbce6e_JaffaCakes118
-
Size
100KB
-
Sample
241001-drykzsxfrm
-
MD5
042ba5007655395fcedc0e934cdbce6e
-
SHA1
4b557fc865bf2d22313681b52e4f65bdc393e4a8
-
SHA256
f576b17e0d3209a93f0aa4b945f2c419f875e59d2333bb064e7364edd6a94d00
-
SHA512
92724417c26c18e913889589e50f08918a2a3a1766595de666a29d2b5ddb12503d154746118974ea1c4ef75025f2d8f25651a8992ace8ef6e5c857891047d8f8
-
SSDEEP
1536:t668iAuismywsLLw0wF9MGM9K/oKtNgCMbA1bL3N+NM5UfONIjnZ+S:XL/KLOM5FCnIS
Malware Config
Targets
-
-
Target
042ba5007655395fcedc0e934cdbce6e_JaffaCakes118
-
Size
100KB
-
MD5
042ba5007655395fcedc0e934cdbce6e
-
SHA1
4b557fc865bf2d22313681b52e4f65bdc393e4a8
-
SHA256
f576b17e0d3209a93f0aa4b945f2c419f875e59d2333bb064e7364edd6a94d00
-
SHA512
92724417c26c18e913889589e50f08918a2a3a1766595de666a29d2b5ddb12503d154746118974ea1c4ef75025f2d8f25651a8992ace8ef6e5c857891047d8f8
-
SSDEEP
1536:t668iAuismywsLLw0wF9MGM9K/oKtNgCMbA1bL3N+NM5UfONIjnZ+S:XL/KLOM5FCnIS
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2