Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    179c96849446270f65485a281dec13c7_JaffaCakes118

  • Size

    458KB

  • Sample

    241006-lxw84ssbqg

  • MD5

    179c96849446270f65485a281dec13c7

  • SHA1

    cf4fcfda49922fa115362a8ebed81c4250702b38

  • SHA256

    ce1ed4a644797ed92066b90fd1ee5150b99997b0f748e52e838549da90f82dd1

  • SHA512

    8354185766c5459780aa76026c2529e6cf1e8e1b988b972802fe7bb6a3d30093fec72a9040de637e6ddec10fb600c1617aa1debc9759efa0b8bde40e5dc0c884

  • SSDEEP

    12288:yCGThBIm7P7RFbkJUY6dbGTayLNZlFt7YsBsD6VjaFLN+K1SYET7:yVMmD7XwJQd+xZHyMsD6dGNL1SB3

Malware Config

Targets

    • Target

      179c96849446270f65485a281dec13c7_JaffaCakes118

    • Size

      458KB

    • MD5

      179c96849446270f65485a281dec13c7

    • SHA1

      cf4fcfda49922fa115362a8ebed81c4250702b38

    • SHA256

      ce1ed4a644797ed92066b90fd1ee5150b99997b0f748e52e838549da90f82dd1

    • SHA512

      8354185766c5459780aa76026c2529e6cf1e8e1b988b972802fe7bb6a3d30093fec72a9040de637e6ddec10fb600c1617aa1debc9759efa0b8bde40e5dc0c884

    • SSDEEP

      12288:yCGThBIm7P7RFbkJUY6dbGTayLNZlFt7YsBsD6VjaFLN+K1SYET7:yVMmD7XwJQd+xZHyMsD6dGNL1SB3

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks