Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    29d1280122a85b31988f66ae140435b0_JaffaCakes118

  • Size

    415KB

  • Sample

    241009-drq6xayhnm

  • MD5

    29d1280122a85b31988f66ae140435b0

  • SHA1

    f4d8ce8e94bdc292bd3faf053b8d95cc3608b591

  • SHA256

    caa23af87fac258aef000af8dfb7259a658b0a533aed7be140bad622e7c36a85

  • SHA512

    44bebc65500df0e7f7a933b4e6d53fee349ddea8fb56d575461dd960a0ed6a5ac919223f652df74246bcbb489b68464b7ebad9ff9e6e861fa52e9fd11f21f222

  • SSDEEP

    12288:Iu3URWtsYf8PemjE8h0UxH9ND6fvhMrfB:IkQe8PemjTh0Ul/8vh+5

Malware Config

Targets

    • Target

      29d1280122a85b31988f66ae140435b0_JaffaCakes118

    • Size

      415KB

    • MD5

      29d1280122a85b31988f66ae140435b0

    • SHA1

      f4d8ce8e94bdc292bd3faf053b8d95cc3608b591

    • SHA256

      caa23af87fac258aef000af8dfb7259a658b0a533aed7be140bad622e7c36a85

    • SHA512

      44bebc65500df0e7f7a933b4e6d53fee349ddea8fb56d575461dd960a0ed6a5ac919223f652df74246bcbb489b68464b7ebad9ff9e6e861fa52e9fd11f21f222

    • SSDEEP

      12288:Iu3URWtsYf8PemjE8h0UxH9ND6fvhMrfB:IkQe8PemjTh0Ul/8vh+5

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

    • Executes dropped EXE

MITRE ATT&CK Enterprise v15

Tasks