Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    0f031b64b458da75c995aabb91f5e9dd_JaffaCakes118

  • Size

    1.0MB

  • Sample

    241003-p9r2psxhqn

  • MD5

    0f031b64b458da75c995aabb91f5e9dd

  • SHA1

    5ad42c90c0b24fa400c2cf76f920da09bce2b2c5

  • SHA256

    c3b0e92ab0acb27a56a7d761a01d3312233f375df5bb3cdd91860edb12b39f79

  • SHA512

    2b88b2fb26cd44fd468cc24be705519ab8b0adab6d227ca7002c024f9310f26d9ce1be4f329701cf7dda3a202dad651ec46cad2540fe14c7614e9192dbd8705a

  • SSDEEP

    24576:PLiKpjHGOFPDjh4usx98MOG0sOgiNEeqxfHKHLxnu:PLxjHGEPDdSFCgiifqHZu

Malware Config

Targets

    • Target

      0f031b64b458da75c995aabb91f5e9dd_JaffaCakes118

    • Size

      1.0MB

    • MD5

      0f031b64b458da75c995aabb91f5e9dd

    • SHA1

      5ad42c90c0b24fa400c2cf76f920da09bce2b2c5

    • SHA256

      c3b0e92ab0acb27a56a7d761a01d3312233f375df5bb3cdd91860edb12b39f79

    • SHA512

      2b88b2fb26cd44fd468cc24be705519ab8b0adab6d227ca7002c024f9310f26d9ce1be4f329701cf7dda3a202dad651ec46cad2540fe14c7614e9192dbd8705a

    • SSDEEP

      24576:PLiKpjHGOFPDjh4usx98MOG0sOgiNEeqxfHKHLxnu:PLxjHGEPDdSFCgiifqHZu

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Drops Chrome extension

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

MITRE ATT&CK Enterprise v15

Tasks