Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
0475003d9c865e701d32dd274d3664c0_JaffaCakes118
-
Size
51KB
-
Sample
241001-fn8b5asakk
-
MD5
0475003d9c865e701d32dd274d3664c0
-
SHA1
7bfaa4cebb7eebe66eeceb2ac1c46644c06c6806
-
SHA256
22bba97907e58227b669d9b8f78f63f8dfb8762dd64808fcb8cd01807e5e1ef8
-
SHA512
298d8319a6543bdc173e9fe7756cb0fc7ec05915e8e6f6b774c4ebf0254e980182868a83538555f9ab77fe32a85d703ad90d253e31fb62ff96636bab200fad87
-
SSDEEP
768:3AAS7IgUlODrhHq2/+97Bk2lZpBmphtrV+qgD9M/kvMlP:+Ig+ODrhL/n2lSaD+Z
Static task
static1
Behavioral task
behavioral1
Sample
0475003d9c865e701d32dd274d3664c0_JaffaCakes118.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
0475003d9c865e701d32dd274d3664c0_JaffaCakes118.exe
Resource
win10v2004-20240802-en
Malware Config
Targets
-
-
Target
0475003d9c865e701d32dd274d3664c0_JaffaCakes118
-
Size
51KB
-
MD5
0475003d9c865e701d32dd274d3664c0
-
SHA1
7bfaa4cebb7eebe66eeceb2ac1c46644c06c6806
-
SHA256
22bba97907e58227b669d9b8f78f63f8dfb8762dd64808fcb8cd01807e5e1ef8
-
SHA512
298d8319a6543bdc173e9fe7756cb0fc7ec05915e8e6f6b774c4ebf0254e980182868a83538555f9ab77fe32a85d703ad90d253e31fb62ff96636bab200fad87
-
SSDEEP
768:3AAS7IgUlODrhHq2/+97Bk2lZpBmphtrV+qgD9M/kvMlP:+Ig+ODrhL/n2lSaD+Z
Score10/10-
Modifies WinLogon for persistence
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-