Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    16df41255ba89debe5e8cd56c2196a74_JaffaCakes118

  • Size

    672KB

  • Sample

    241005-j2qwsayenh

  • MD5

    16df41255ba89debe5e8cd56c2196a74

  • SHA1

    38b4909bd92aba768ac0a5bd9529bd2b9db27280

  • SHA256

    12310f160ac2fde7e03b2b9efefcee9027002f11035973843d71d825e6caf39e

  • SHA512

    37311a192a681164e537b831c44887e5bc25dceb7b3a2f152d43beef5b0339b29225573a0e7b78cbe69cb02de903b88e42f66488644a5e39cb3e351a7f2da4a2

  • SSDEEP

    6144:duIL4XOrbL8uuUpsPHhhtQDdINgP2iMjz5qBHswNet4HWlpkD59aIA:d7lr07Os/hhtudFWJIHZNeyHW8D

Malware Config

Targets

    • Target

      16df41255ba89debe5e8cd56c2196a74_JaffaCakes118

    • Size

      672KB

    • MD5

      16df41255ba89debe5e8cd56c2196a74

    • SHA1

      38b4909bd92aba768ac0a5bd9529bd2b9db27280

    • SHA256

      12310f160ac2fde7e03b2b9efefcee9027002f11035973843d71d825e6caf39e

    • SHA512

      37311a192a681164e537b831c44887e5bc25dceb7b3a2f152d43beef5b0339b29225573a0e7b78cbe69cb02de903b88e42f66488644a5e39cb3e351a7f2da4a2

    • SSDEEP

      6144:duIL4XOrbL8uuUpsPHhhtQDdINgP2iMjz5qBHswNet4HWlpkD59aIA:d7lr07Os/hhtudFWJIHZNeyHW8D

    • Modifies WinLogon for persistence

    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • Loads dropped DLL

    • Drops file in System32 directory

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks