Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
091e9582c24b75cd14d1e0f760876205_JaffaCakes118
-
Size
1.0MB
-
Sample
241002-f8gd5stbnc
-
MD5
091e9582c24b75cd14d1e0f760876205
-
SHA1
4fe68f1e3d52a36c2541e29702d1e4897156229a
-
SHA256
43d8040de6bdf7acb6f434726632406d22928962615ea8f56e50e649b07188fb
-
SHA512
a4211589e15ee471a3fa9fdbd7369077156f072a77813285851f824bb77f7f6864d34c426a7313666ac825389e80a91d08295129f3cabfb4495e0bc2e2422ab8
-
SSDEEP
24576:PLiYzRekZ5/l1MY5vySTGAGB4jtylZ0JtWTw9mH3rXj:PLPz78aSN4cZotWTwqTj
Malware Config
Targets
-
-
Target
091e9582c24b75cd14d1e0f760876205_JaffaCakes118
-
Size
1.0MB
-
MD5
091e9582c24b75cd14d1e0f760876205
-
SHA1
4fe68f1e3d52a36c2541e29702d1e4897156229a
-
SHA256
43d8040de6bdf7acb6f434726632406d22928962615ea8f56e50e649b07188fb
-
SHA512
a4211589e15ee471a3fa9fdbd7369077156f072a77813285851f824bb77f7f6864d34c426a7313666ac825389e80a91d08295129f3cabfb4495e0bc2e2422ab8
-
SSDEEP
24576:PLiYzRekZ5/l1MY5vySTGAGB4jtylZ0JtWTw9mH3rXj:PLPz78aSN4cZotWTwqTj
Score7/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-