Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    1595c2a9b47cc32fcebb47e63e416290_JaffaCakes118

  • Size

    282KB

  • Sample

    241005-bhgvrswgmm

  • MD5

    1595c2a9b47cc32fcebb47e63e416290

  • SHA1

    e08cbbe3b87c53ba49eec7d0c5d3359c14017a32

  • SHA256

    d847b39df7c3c16839e0fbe9a07187fce39b7ca9521201be82d1bcacd2b60c04

  • SHA512

    35b8b985b8dedfe99a388b17170541d6c983571f5d11239fce900200f80ef201a41779971fe5c3142aa028a7525553f200da089a6184ad65b7a1fc591f6751b6

  • SSDEEP

    6144:y/Kod5J1iij6ijaGxmCAaMSbGqJ92rnxWXYbG:M7DD2EESN2rBq

Malware Config

Targets

    • Target

      1595c2a9b47cc32fcebb47e63e416290_JaffaCakes118

    • Size

      282KB

    • MD5

      1595c2a9b47cc32fcebb47e63e416290

    • SHA1

      e08cbbe3b87c53ba49eec7d0c5d3359c14017a32

    • SHA256

      d847b39df7c3c16839e0fbe9a07187fce39b7ca9521201be82d1bcacd2b60c04

    • SHA512

      35b8b985b8dedfe99a388b17170541d6c983571f5d11239fce900200f80ef201a41779971fe5c3142aa028a7525553f200da089a6184ad65b7a1fc591f6751b6

    • SSDEEP

      6144:y/Kod5J1iij6ijaGxmCAaMSbGqJ92rnxWXYbG:M7DD2EESN2rBq

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

    • Executes dropped EXE

MITRE ATT&CK Enterprise v15

Tasks