Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
2b8039c78c4dad17c2d0c342322f7680_JaffaCakes118
-
Size
168KB
-
Sample
241009-fxhstswcnb
-
MD5
2b8039c78c4dad17c2d0c342322f7680
-
SHA1
0fa86493bbc6c05d2c643d0c329939368cb5c989
-
SHA256
df27a81d101b133c0254000f3757a564c5a3a88e2bd6562d4af593a7b0e1c6f0
-
SHA512
456c3203e8ad28f4e9342fc8128b1b3101ed90ab773eb86a49023d8c2275b608ddecc0e8af1f19db9939027327d3749c55509dcfc9ce53cc71233296d0cd8593
-
SSDEEP
3072:gcD0SAY4yKdEvffYiihhnSBPKk4cGSgMpurEqDaB2Z+C:hDCWYii7nSBSk41SD4k2Z+
Malware Config
Targets
-
-
Target
2b8039c78c4dad17c2d0c342322f7680_JaffaCakes118
-
Size
168KB
-
MD5
2b8039c78c4dad17c2d0c342322f7680
-
SHA1
0fa86493bbc6c05d2c643d0c329939368cb5c989
-
SHA256
df27a81d101b133c0254000f3757a564c5a3a88e2bd6562d4af593a7b0e1c6f0
-
SHA512
456c3203e8ad28f4e9342fc8128b1b3101ed90ab773eb86a49023d8c2275b608ddecc0e8af1f19db9939027327d3749c55509dcfc9ce53cc71233296d0cd8593
-
SSDEEP
3072:gcD0SAY4yKdEvffYiihhnSBPKk4cGSgMpurEqDaB2Z+C:hDCWYii7nSBSk41SD4k2Z+
Score10/10-
Disables service(s)
-
Drops file in Drivers directory
-
Deletes itself
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
Checks whether UAC is enabled
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Create or Modify System Process
1Windows Service
1Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Create or Modify System Process
1Windows Service
1