Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    107cd56ce7cdfe401a3f61d3e9750854_JaffaCakes118

  • Size

    1.0MB

  • Sample

    241003-zsv25szdkg

  • MD5

    107cd56ce7cdfe401a3f61d3e9750854

  • SHA1

    cfcca9bcf5d93b491177052695bdefa635ee0fd3

  • SHA256

    3c0888e4f8ea183d7783cb2df68fe36a93bb6196bf1fbd1488e666ebe21781c1

  • SHA512

    04067261b0072e0a4ba54a46812aae0ad916481e9fe54b653412306d5562a2422d8a71517105e8bb7109b70c1bddbe8af025a5f6dfe1489d7f8acf3b4a9263ce

  • SSDEEP

    24576:tLizC9n2FbSAvouvAcmtid1sWFczNaV5lGJc95:tLq0ncBvoxy1sWaQ5b95

Malware Config

Targets

    • Target

      107cd56ce7cdfe401a3f61d3e9750854_JaffaCakes118

    • Size

      1.0MB

    • MD5

      107cd56ce7cdfe401a3f61d3e9750854

    • SHA1

      cfcca9bcf5d93b491177052695bdefa635ee0fd3

    • SHA256

      3c0888e4f8ea183d7783cb2df68fe36a93bb6196bf1fbd1488e666ebe21781c1

    • SHA512

      04067261b0072e0a4ba54a46812aae0ad916481e9fe54b653412306d5562a2422d8a71517105e8bb7109b70c1bddbe8af025a5f6dfe1489d7f8acf3b4a9263ce

    • SSDEEP

      24576:tLizC9n2FbSAvouvAcmtid1sWFczNaV5lGJc95:tLq0ncBvoxy1sWaQ5b95

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Drops Chrome extension

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

MITRE ATT&CK Enterprise v15

Tasks