Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    0e036245a59bbbdac57db09024994bd6_JaffaCakes118

  • Size

    85KB

  • Sample

    241003-fjffjswanj

  • MD5

    0e036245a59bbbdac57db09024994bd6

  • SHA1

    ae02cbc2c666d44fa065c0c40d4cc5582df737a7

  • SHA256

    a2dafe705666460765ef957733c3b3e2ce2ad9a66046fa4c0ed3c2b987eac701

  • SHA512

    93160356edbaa204b82aa5730198e21fb7b801289ee46c0f77270f353912bc722d2d005e40c2f7fa7bc6cc936d4bccd31dfbbf9ea9ffce1407cba5cd81f7ac42

  • SSDEEP

    1536:p4q8Q1xZtffrb8sjPFNhTYsFFrzckH2fmit4VB+o3AlwPs:qKtfDwsjPThTYszDH2fy9QC

Malware Config

Targets

    • Target

      0e036245a59bbbdac57db09024994bd6_JaffaCakes118

    • Size

      85KB

    • MD5

      0e036245a59bbbdac57db09024994bd6

    • SHA1

      ae02cbc2c666d44fa065c0c40d4cc5582df737a7

    • SHA256

      a2dafe705666460765ef957733c3b3e2ce2ad9a66046fa4c0ed3c2b987eac701

    • SHA512

      93160356edbaa204b82aa5730198e21fb7b801289ee46c0f77270f353912bc722d2d005e40c2f7fa7bc6cc936d4bccd31dfbbf9ea9ffce1407cba5cd81f7ac42

    • SSDEEP

      1536:p4q8Q1xZtffrb8sjPFNhTYsFFrzckH2fmit4VB+o3AlwPs:qKtfDwsjPThTYszDH2fy9QC

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks