Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    04f9a8e47ce9295dd2afb2706562cd52_JaffaCakes118

  • Size

    717KB

  • Sample

    241001-j2nresygrn

  • MD5

    04f9a8e47ce9295dd2afb2706562cd52

  • SHA1

    68d9086e128bd418956461533b2e059c0a26090b

  • SHA256

    8a5081a959384f25a65cf84809edbc78dc9b6967b87b1de0d3de97a3e5274c77

  • SHA512

    8d01987ef7441847bc2f7cf511a5c54d6e539b9184a1dd8a2fc81b963553cfbd387a1f60f50b6b31236af0a07b6d397e550740f6d14088199fdf4abaab4bb8c7

  • SSDEEP

    12288:BKnekrL58BVdbJXgfTN7lV60gGx4khq9mY4zdrWcFn9VtFuuvTAwdY98:OLiBVd6rN7+0gGRq2z1WcFn9VXTNdf

Malware Config

Targets

    • Target

      04f9a8e47ce9295dd2afb2706562cd52_JaffaCakes118

    • Size

      717KB

    • MD5

      04f9a8e47ce9295dd2afb2706562cd52

    • SHA1

      68d9086e128bd418956461533b2e059c0a26090b

    • SHA256

      8a5081a959384f25a65cf84809edbc78dc9b6967b87b1de0d3de97a3e5274c77

    • SHA512

      8d01987ef7441847bc2f7cf511a5c54d6e539b9184a1dd8a2fc81b963553cfbd387a1f60f50b6b31236af0a07b6d397e550740f6d14088199fdf4abaab4bb8c7

    • SSDEEP

      12288:BKnekrL58BVdbJXgfTN7lV60gGx4khq9mY4zdrWcFn9VtFuuvTAwdY98:OLiBVd6rN7+0gGRq2z1WcFn9VXTNdf

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Drops Chrome extension

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

MITRE ATT&CK Enterprise v15

Tasks