Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2527afd6bfc6aad57288ad2e5e0009fb_JaffaCakes118

  • Size

    165KB

  • Sample

    241008-zgk3ssvalp

  • MD5

    2527afd6bfc6aad57288ad2e5e0009fb

  • SHA1

    df448bf86edd1de6268ec10a33a36fbaabea3902

  • SHA256

    a9bbe6108f15cd935ef75137412dda114a4ebce61f7f6c6ae465e5a7332bf3b4

  • SHA512

    ce3158cb6a83c044d22272ed4fdf127134d956d2c973cfc4292cc385b348a30ed4b2ac38afe26ab18ce5d271891b108230e9bd0568c7191092d6f64016445f37

  • SSDEEP

    3072:a4HCWau/PlYeuL7ZLFh6Ca6cbL9l2hzB3fJCC6j8+Er6ez4:hiI/PlY37ZLF4Ca6WABqBOvs

Score
7/10

Malware Config

Targets

    • Target

      2527afd6bfc6aad57288ad2e5e0009fb_JaffaCakes118

    • Size

      165KB

    • MD5

      2527afd6bfc6aad57288ad2e5e0009fb

    • SHA1

      df448bf86edd1de6268ec10a33a36fbaabea3902

    • SHA256

      a9bbe6108f15cd935ef75137412dda114a4ebce61f7f6c6ae465e5a7332bf3b4

    • SHA512

      ce3158cb6a83c044d22272ed4fdf127134d956d2c973cfc4292cc385b348a30ed4b2ac38afe26ab18ce5d271891b108230e9bd0568c7191092d6f64016445f37

    • SSDEEP

      3072:a4HCWau/PlYeuL7ZLFh6Ca6cbL9l2hzB3fJCC6j8+Er6ez4:hiI/PlY37ZLF4Ca6WABqBOvs

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops desktop.ini file(s)

MITRE ATT&CK Enterprise v15

Tasks