Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2b054ccbd996f138ebf0f25b99493567_JaffaCakes118

  • Size

    106KB

  • Sample

    241009-fbdxrasejh

  • MD5

    2b054ccbd996f138ebf0f25b99493567

  • SHA1

    ac709136eb5c0f929834ca96b9f1820f0b5e2c35

  • SHA256

    f52177837b0eaaf696030413951c34b2eb535fa7de721f0b93b4399a8048d8a3

  • SHA512

    ba94a9c20f53eb239bbf0da5f40cc38a37614887121defe30cc3a233930d0e630101b4d35c45e310dfaf23557ad48b3fcd3e58e9cc181a5bb1f4065294d181ea

  • SSDEEP

    1536:0RRR0SLElwMV3NxgxrFtT8jIW0zALoVZTcuWCOTY/C2jcc0lbxOvTgZJKOeXcJtv:gZC2jcc0lbxOrl/MJtXwKb

Malware Config

Targets

    • Target

      2b054ccbd996f138ebf0f25b99493567_JaffaCakes118

    • Size

      106KB

    • MD5

      2b054ccbd996f138ebf0f25b99493567

    • SHA1

      ac709136eb5c0f929834ca96b9f1820f0b5e2c35

    • SHA256

      f52177837b0eaaf696030413951c34b2eb535fa7de721f0b93b4399a8048d8a3

    • SHA512

      ba94a9c20f53eb239bbf0da5f40cc38a37614887121defe30cc3a233930d0e630101b4d35c45e310dfaf23557ad48b3fcd3e58e9cc181a5bb1f4065294d181ea

    • SSDEEP

      1536:0RRR0SLElwMV3NxgxrFtT8jIW0zALoVZTcuWCOTY/C2jcc0lbxOvTgZJKOeXcJtv:gZC2jcc0lbxOrl/MJtXwKb

    • Process spawned unexpected child process

      This typically indicates the parent process was compromised via an exploit or macro.

    • Deletes itself

    • Indicator Removal: File Deletion

      Adversaries may delete files left behind by the actions of their intrusion activity.

MITRE ATT&CK Enterprise v15

Tasks