Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    0e8bf75e3f8b2c85945c58eeb7f1afad_JaffaCakes118

  • Size

    65KB

  • Sample

    241003-h497rs1drr

  • MD5

    0e8bf75e3f8b2c85945c58eeb7f1afad

  • SHA1

    b0547ff2044626f297d98438c687a1df40b1d41e

  • SHA256

    6bf547f17002fd30de282700abf494e7e0766f3ab09918c5c919c728c1cd62ef

  • SHA512

    9af55554215a595ef8a8dbb614af73afc2b4056d979ec1ce5956b5a9124e75e36353bd7fde94018729e70bfa9bcc95a5432af4dd02de84f561f0efa720b1f17f

  • SSDEEP

    1536:4bl0zZ/iCw59di8LBFK7DIzfdC8l9C5xh3x:00zZqhdimwUs8lM5xz

Malware Config

Targets

    • Target

      0e8bf75e3f8b2c85945c58eeb7f1afad_JaffaCakes118

    • Size

      65KB

    • MD5

      0e8bf75e3f8b2c85945c58eeb7f1afad

    • SHA1

      b0547ff2044626f297d98438c687a1df40b1d41e

    • SHA256

      6bf547f17002fd30de282700abf494e7e0766f3ab09918c5c919c728c1cd62ef

    • SHA512

      9af55554215a595ef8a8dbb614af73afc2b4056d979ec1ce5956b5a9124e75e36353bd7fde94018729e70bfa9bcc95a5432af4dd02de84f561f0efa720b1f17f

    • SSDEEP

      1536:4bl0zZ/iCw59di8LBFK7DIzfdC8l9C5xh3x:00zZqhdimwUs8lM5xz

    • Boot or Logon Autostart Execution: Print Processors

      Adversaries may abuse print processors to run malicious DLLs during system boot for persistence and/or privilege escalation.

    • Executes dropped EXE

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks