Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    13ca0de233b17560e52c80aab6650367_JaffaCakes118

  • Size

    13KB

  • Sample

    241004-r46n1szdkq

  • MD5

    13ca0de233b17560e52c80aab6650367

  • SHA1

    a2be680993115b199cada7c7a609427075f70bf6

  • SHA256

    a97faf210fdd4c7f7d63f2e7a1d2ea6d4650ec9cbc3c0cd929f4818acd46eca8

  • SHA512

    9e49abce4bb78716efb2a5c890c91c50f84a059abb3ceba774b663d8f7d87a03b95fdadae3673e471810f9b6190c7dff97c63416623854e00c75e33713ab0f47

  • SSDEEP

    384:cDkjXT+8Be9ZeKA9rAkSzVtnP4FRvfVem:rjj+8w9sKAxAvzVtngK

Malware Config

Targets

    • Target

      13ca0de233b17560e52c80aab6650367_JaffaCakes118

    • Size

      13KB

    • MD5

      13ca0de233b17560e52c80aab6650367

    • SHA1

      a2be680993115b199cada7c7a609427075f70bf6

    • SHA256

      a97faf210fdd4c7f7d63f2e7a1d2ea6d4650ec9cbc3c0cd929f4818acd46eca8

    • SHA512

      9e49abce4bb78716efb2a5c890c91c50f84a059abb3ceba774b663d8f7d87a03b95fdadae3673e471810f9b6190c7dff97c63416623854e00c75e33713ab0f47

    • SSDEEP

      384:cDkjXT+8Be9ZeKA9rAkSzVtnP4FRvfVem:rjj+8w9sKAxAvzVtngK

    • Adds autorun key to be loaded by Explorer.exe on startup

    • Deletes itself

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks