Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    0475003d9c865e701d32dd274d3664c0_JaffaCakes118

  • Size

    51KB

  • Sample

    241001-fn8b5asakk

  • MD5

    0475003d9c865e701d32dd274d3664c0

  • SHA1

    7bfaa4cebb7eebe66eeceb2ac1c46644c06c6806

  • SHA256

    22bba97907e58227b669d9b8f78f63f8dfb8762dd64808fcb8cd01807e5e1ef8

  • SHA512

    298d8319a6543bdc173e9fe7756cb0fc7ec05915e8e6f6b774c4ebf0254e980182868a83538555f9ab77fe32a85d703ad90d253e31fb62ff96636bab200fad87

  • SSDEEP

    768:3AAS7IgUlODrhHq2/+97Bk2lZpBmphtrV+qgD9M/kvMlP:+Ig+ODrhL/n2lSaD+Z

Score
10/10

Malware Config

Targets

    • Target

      0475003d9c865e701d32dd274d3664c0_JaffaCakes118

    • Size

      51KB

    • MD5

      0475003d9c865e701d32dd274d3664c0

    • SHA1

      7bfaa4cebb7eebe66eeceb2ac1c46644c06c6806

    • SHA256

      22bba97907e58227b669d9b8f78f63f8dfb8762dd64808fcb8cd01807e5e1ef8

    • SHA512

      298d8319a6543bdc173e9fe7756cb0fc7ec05915e8e6f6b774c4ebf0254e980182868a83538555f9ab77fe32a85d703ad90d253e31fb62ff96636bab200fad87

    • SSDEEP

      768:3AAS7IgUlODrhHq2/+97Bk2lZpBmphtrV+qgD9M/kvMlP:+Ig+ODrhL/n2lSaD+Z

    Score
    10/10
    • Modifies WinLogon for persistence

    • Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Enterprise v15

Tasks