Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    0f7a03ff397a95e57cefbdbf8954ea30_JaffaCakes118

  • Size

    494KB

  • Sample

    241003-tb7fysxbkg

  • MD5

    0f7a03ff397a95e57cefbdbf8954ea30

  • SHA1

    c2bae51fbe3c435cdf66cc55c7829ed76a3b85e5

  • SHA256

    1eea1e550d3f9ef97d42286fef537f3b29a93aa95e8cb859fb793383bcbd731d

  • SHA512

    0a763fe989750731fe703d23f5983e4a85344483f36786b2e678402ef6238b541837fb14681890a1ce69392923eef3916ef9cc9513488bce155a5fb7ad7dad45

  • SSDEEP

    12288:aGSB9TpivQmcKIpbSR/J7zMhv8NtTirdorX6:aF9wImcKI8R/J7zMB8TEdoG

Malware Config

Targets

    • Target

      0f7a03ff397a95e57cefbdbf8954ea30_JaffaCakes118

    • Size

      494KB

    • MD5

      0f7a03ff397a95e57cefbdbf8954ea30

    • SHA1

      c2bae51fbe3c435cdf66cc55c7829ed76a3b85e5

    • SHA256

      1eea1e550d3f9ef97d42286fef537f3b29a93aa95e8cb859fb793383bcbd731d

    • SHA512

      0a763fe989750731fe703d23f5983e4a85344483f36786b2e678402ef6238b541837fb14681890a1ce69392923eef3916ef9cc9513488bce155a5fb7ad7dad45

    • SSDEEP

      12288:aGSB9TpivQmcKIpbSR/J7zMhv8NtTirdorX6:aF9wImcKI8R/J7zMB8TEdoG

    • Deletes itself

    • Executes dropped EXE

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

MITRE ATT&CK Enterprise v15

Tasks