Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2c41e947b027cbeae85f27259a9df7fe_JaffaCakes118

  • Size

    359KB

  • Sample

    241009-gxjkssxarn

  • MD5

    2c41e947b027cbeae85f27259a9df7fe

  • SHA1

    032f4b0d16bcfe402ef93479cf19163c261ef120

  • SHA256

    f97c2515b011badbd1530583738dc11acbe07054694469c06d53530c408b7a95

  • SHA512

    7ceb1ac587ec34fbdb34cf9ce2f2738a3aec68feff77e3077cecdf5305c9222a60347dd50305efd9d5952dfe468572e4fd48a94d175a054e6134e3f3a26b1645

  • SSDEEP

    6144:CiPYnj0RHkzPVVtwcccgSFqyCAHts1AC1WhfsB7BnaXwnSdn0R:NYnjMHiV4SFqCLFtSdn/nSdno

Malware Config

Targets

    • Target

      2c41e947b027cbeae85f27259a9df7fe_JaffaCakes118

    • Size

      359KB

    • MD5

      2c41e947b027cbeae85f27259a9df7fe

    • SHA1

      032f4b0d16bcfe402ef93479cf19163c261ef120

    • SHA256

      f97c2515b011badbd1530583738dc11acbe07054694469c06d53530c408b7a95

    • SHA512

      7ceb1ac587ec34fbdb34cf9ce2f2738a3aec68feff77e3077cecdf5305c9222a60347dd50305efd9d5952dfe468572e4fd48a94d175a054e6134e3f3a26b1645

    • SSDEEP

      6144:CiPYnj0RHkzPVVtwcccgSFqyCAHts1AC1WhfsB7BnaXwnSdn0R:NYnjMHiV4SFqCLFtSdn/nSdno

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks