Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2f797eb23d0d605725987c69580725a4_JaffaCakes118

  • Size

    54KB

  • Sample

    241009-mhvbmstgmg

  • MD5

    2f797eb23d0d605725987c69580725a4

  • SHA1

    1e3db0bb2de4e40718472ddf855d0b83e21531c8

  • SHA256

    14e58352c5dedf1c414b028a77e2e40608f369f33d8db539df91fbea0c2cbe73

  • SHA512

    0808b3bd8aa10689ec9f66be6ad0e4d75e743b729496edad00b823f81d64902560e7de148e6b7ca241b87d9d89895bc73ace391fb0804d18a997e3129dd66946

  • SSDEEP

    768:T/vHh/qm0JrU72GjaxDePepheXXoAjw7Y/Yg0Y43Xigck0JfhKpDSKxIYK:VcVU6ZKkhsCkAg0XF0Jfe

Malware Config

Targets

    • Target

      2f797eb23d0d605725987c69580725a4_JaffaCakes118

    • Size

      54KB

    • MD5

      2f797eb23d0d605725987c69580725a4

    • SHA1

      1e3db0bb2de4e40718472ddf855d0b83e21531c8

    • SHA256

      14e58352c5dedf1c414b028a77e2e40608f369f33d8db539df91fbea0c2cbe73

    • SHA512

      0808b3bd8aa10689ec9f66be6ad0e4d75e743b729496edad00b823f81d64902560e7de148e6b7ca241b87d9d89895bc73ace391fb0804d18a997e3129dd66946

    • SSDEEP

      768:T/vHh/qm0JrU72GjaxDePepheXXoAjw7Y/Yg0Y43Xigck0JfhKpDSKxIYK:VcVU6ZKkhsCkAg0XF0Jfe

    • Contacts a large (49254) amount of remote hosts

      This may indicate a network scan to discover remotely running services.

    • Creates a large amount of network flows

      This may indicate a network scan to discover remotely running services.

    • Modifies Watchdog functionality

      Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.

    • Writes file to system bin folder

MITRE ATT&CK Enterprise v15

Tasks