Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    36bdf5c8030f81df15f32906ee1fcfba_JaffaCakes118

  • Size

    1.0MB

  • Sample

    241011-zm8faatana

  • MD5

    36bdf5c8030f81df15f32906ee1fcfba

  • SHA1

    931a9bfc69f1bdd4d7d0067cd4434e2c120efe92

  • SHA256

    6782f0ffbdacfddbf436b42f83166f116b63918b969b1234ff6addea70e2e547

  • SHA512

    ba4adcee38624c39cee7a7ed89cf6c6e2c575d4323a9d117c8f963d6e69d7653f4f10f3d3107f7aaf82165b083a6cca5602d562f59fcf8b0ee2dd84f1c461d01

  • SSDEEP

    24576:PLihXVMRGJ+wsfDNsmIAoatBFGdZmI06CaY3fNe8b:PL0XVMGEzfi7A8cbaY3fQu

Malware Config

Targets

    • Target

      36bdf5c8030f81df15f32906ee1fcfba_JaffaCakes118

    • Size

      1.0MB

    • MD5

      36bdf5c8030f81df15f32906ee1fcfba

    • SHA1

      931a9bfc69f1bdd4d7d0067cd4434e2c120efe92

    • SHA256

      6782f0ffbdacfddbf436b42f83166f116b63918b969b1234ff6addea70e2e547

    • SHA512

      ba4adcee38624c39cee7a7ed89cf6c6e2c575d4323a9d117c8f963d6e69d7653f4f10f3d3107f7aaf82165b083a6cca5602d562f59fcf8b0ee2dd84f1c461d01

    • SSDEEP

      24576:PLihXVMRGJ+wsfDNsmIAoatBFGdZmI06CaY3fNe8b:PL0XVMGEzfi7A8cbaY3fQu

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Drops Chrome extension

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

MITRE ATT&CK Enterprise v15

Tasks