Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    3866caf110bd9a5ff87314151c7f19c2_JaffaCakes118

  • Size

    1.1MB

  • Sample

    241012-eymmqstakh

  • MD5

    3866caf110bd9a5ff87314151c7f19c2

  • SHA1

    3cbfa0827902913d9a604202b4a85869e0a7381f

  • SHA256

    1c355af48269bf0f2bb533aeed3457fc4bb4f86b0813e5ef781a61b6282a68e7

  • SHA512

    845fa60e90a200fca1eb85f8957ae6f6cc4b87fb096187dbd7aafc073d171a158ba39365717757483da6883f437c0cc29af46bdc6f168f298b6d39930b180685

  • SSDEEP

    24576:h1OYdaO8OBsFEt5hDG0SAMs9jR/jaJnTJdwY68+UhnWb3aQ2:h1OsJOEt5hDG0SAMs9j8nTJ2Y68hWGQ2

Malware Config

Targets

    • Target

      3866caf110bd9a5ff87314151c7f19c2_JaffaCakes118

    • Size

      1.1MB

    • MD5

      3866caf110bd9a5ff87314151c7f19c2

    • SHA1

      3cbfa0827902913d9a604202b4a85869e0a7381f

    • SHA256

      1c355af48269bf0f2bb533aeed3457fc4bb4f86b0813e5ef781a61b6282a68e7

    • SHA512

      845fa60e90a200fca1eb85f8957ae6f6cc4b87fb096187dbd7aafc073d171a158ba39365717757483da6883f437c0cc29af46bdc6f168f298b6d39930b180685

    • SSDEEP

      24576:h1OYdaO8OBsFEt5hDG0SAMs9jR/jaJnTJdwY68+UhnWb3aQ2:h1OsJOEt5hDG0SAMs9j8nTJ2Y68hWGQ2

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Drops Chrome extension

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

MITRE ATT&CK Enterprise v15

Tasks