Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
09b66403a94ba8e48c4aad9d570f892e_JaffaCakes118
-
Size
67KB
-
Sample
241002-j4h9qazckh
-
MD5
09b66403a94ba8e48c4aad9d570f892e
-
SHA1
74f4cb04b410262281ac4fb728a27b4a5058aeb8
-
SHA256
d65688b9a06a066d53973b1c832d1fd758799c33f04299af9d11d945b6604a2e
-
SHA512
e807d548eceb750899da1d109051e78db9578b55504dd3b977dc4249b58fa498bbec48ca88626a7ca1f7ca79a524cdef45a95217a15a8ffd06b042b8ecf9b9ed
-
SSDEEP
768:J/Z+QyvVuJGQvgOpU/WGGIegFDhNmvdMYXqYt1NEDIefZsD:JB+QvgO2/rEgzNLoZt1y
Malware Config
Targets
-
-
Target
09b66403a94ba8e48c4aad9d570f892e_JaffaCakes118
-
Size
67KB
-
MD5
09b66403a94ba8e48c4aad9d570f892e
-
SHA1
74f4cb04b410262281ac4fb728a27b4a5058aeb8
-
SHA256
d65688b9a06a066d53973b1c832d1fd758799c33f04299af9d11d945b6604a2e
-
SHA512
e807d548eceb750899da1d109051e78db9578b55504dd3b977dc4249b58fa498bbec48ca88626a7ca1f7ca79a524cdef45a95217a15a8ffd06b042b8ecf9b9ed
-
SSDEEP
768:J/Z+QyvVuJGQvgOpU/WGGIegFDhNmvdMYXqYt1NEDIefZsD:JB+QvgO2/rEgzNLoZt1y
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2