Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
286a756da973a2d5c93f6369f29b0123_JaffaCakes118
-
Size
2.5MB
-
Sample
241009-btlm4asfnb
-
MD5
286a756da973a2d5c93f6369f29b0123
-
SHA1
ca524b9b2a224bb5a8ee44c34a20cf7bfd480bb3
-
SHA256
d53aedd9e385eece0a12a27a9516efe58ad333127804b094bb9f5080be639b72
-
SHA512
a617778b70b86f9aa0e96812c7a3566be22cc62f1c41b7a53ae3eaf7d48e1c878bfe046e6e8d787988fbf4060a08a0212a59b14680c986952ffed91b1d43518a
-
SSDEEP
6144:dDFmzEqZmco9WeHIo72BsHES7UuB5KR8nsxsXUI7/DF/LKw49y9EdxLqmdBZS91a:JFmz5Z9oQeo4ZEta2sLjx/0yCxdUpBi
Static task
static1
Behavioral task
behavioral1
Sample
286a756da973a2d5c93f6369f29b0123_JaffaCakes118.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
286a756da973a2d5c93f6369f29b0123_JaffaCakes118.exe
Resource
win10v2004-20241007-en
Malware Config
Targets
-
-
Target
286a756da973a2d5c93f6369f29b0123_JaffaCakes118
-
Size
2.5MB
-
MD5
286a756da973a2d5c93f6369f29b0123
-
SHA1
ca524b9b2a224bb5a8ee44c34a20cf7bfd480bb3
-
SHA256
d53aedd9e385eece0a12a27a9516efe58ad333127804b094bb9f5080be639b72
-
SHA512
a617778b70b86f9aa0e96812c7a3566be22cc62f1c41b7a53ae3eaf7d48e1c878bfe046e6e8d787988fbf4060a08a0212a59b14680c986952ffed91b1d43518a
-
SSDEEP
6144:dDFmzEqZmco9WeHIo72BsHES7UuB5KR8nsxsXUI7/DF/LKw49y9EdxLqmdBZS91a:JFmz5Z9oQeo4ZEta2sLjx/0yCxdUpBi
Score7/10-
Executes dropped EXE
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Maps connected drives based on registry
Disk information is often read in order to detect sandboxing environments.
-