Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    0b9f5c827c3e51a6fdaa8cbd496a97a0_JaffaCakes118

  • Size

    1.0MB

  • Sample

    241002-t8egfazfpf

  • MD5

    0b9f5c827c3e51a6fdaa8cbd496a97a0

  • SHA1

    3f4997113dace261b0dd3fc84fda6dfb92a73004

  • SHA256

    ee3e21a8e918e97afc29be6bce207a8c1b62b9fc5d5f42592b391adaba7c9b16

  • SHA512

    8e2cd0125a12ff1b7c8fee4d52687e1d57488858ca7119a0593d8965eb01c00a471f5271e24fee3ca606138f2cb3b1fcb24a39819deac5bd01608944e0d70de5

  • SSDEEP

    24576:4LiVMJs0+22rBJdFSaHwdaduUwbpYLd0POEbbGiVB1KJhtEQ/qb:4Lzs0+lr3dFLHwiwUYCyOhWb

Malware Config

Targets

    • Target

      0b9f5c827c3e51a6fdaa8cbd496a97a0_JaffaCakes118

    • Size

      1.0MB

    • MD5

      0b9f5c827c3e51a6fdaa8cbd496a97a0

    • SHA1

      3f4997113dace261b0dd3fc84fda6dfb92a73004

    • SHA256

      ee3e21a8e918e97afc29be6bce207a8c1b62b9fc5d5f42592b391adaba7c9b16

    • SHA512

      8e2cd0125a12ff1b7c8fee4d52687e1d57488858ca7119a0593d8965eb01c00a471f5271e24fee3ca606138f2cb3b1fcb24a39819deac5bd01608944e0d70de5

    • SSDEEP

      24576:4LiVMJs0+22rBJdFSaHwdaduUwbpYLd0POEbbGiVB1KJhtEQ/qb:4Lzs0+lr3dFLHwiwUYCyOhWb

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Drops Chrome extension

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

MITRE ATT&CK Enterprise v15

Tasks