Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
0b73f3b5e9cd941b0375598fa4d793c4_JaffaCakes118
-
Size
892KB
-
Sample
241002-tc4rfsybpe
-
MD5
0b73f3b5e9cd941b0375598fa4d793c4
-
SHA1
2513bfdbe2df1e3d7b010e357831df33960db0c5
-
SHA256
ebf3e97e180f8d268c52106b5f49e76a6729f86d425bbff28f7f253f1f8f4126
-
SHA512
5f0352ea52f17625db4fd8995d70bad76215a8858ede526c7a9be436a39d95b6fe25c52e2aa71eef73b90621837e9faaeaa64a1e49ce90a71481f6584cf6e717
-
SSDEEP
24576:iY/XujTDENRrkL9VaAqB/H+dyu9OAN1g:x+PDE3rkL985B/HYnE
Malware Config
Targets
-
-
Target
0b73f3b5e9cd941b0375598fa4d793c4_JaffaCakes118
-
Size
892KB
-
MD5
0b73f3b5e9cd941b0375598fa4d793c4
-
SHA1
2513bfdbe2df1e3d7b010e357831df33960db0c5
-
SHA256
ebf3e97e180f8d268c52106b5f49e76a6729f86d425bbff28f7f253f1f8f4126
-
SHA512
5f0352ea52f17625db4fd8995d70bad76215a8858ede526c7a9be436a39d95b6fe25c52e2aa71eef73b90621837e9faaeaa64a1e49ce90a71481f6584cf6e717
-
SSDEEP
24576:iY/XujTDENRrkL9VaAqB/H+dyu9OAN1g:x+PDE3rkL985B/HYnE
Score7/10-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Adds Run key to start application
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Credential Access
Credentials from Password Stores
1Credentials from Web Browsers
1Unsecured Credentials
1Credentials In Files
1