Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    3a00617215d9016cdf3a79bd21be4b4d_JaffaCakes118

  • Size

    724KB

  • Sample

    241012-plv4fszfrd

  • MD5

    3a00617215d9016cdf3a79bd21be4b4d

  • SHA1

    b0096448d2784a6c50314593d07cb536e57ab537

  • SHA256

    05b9b42be478a79e6b06a61db08145d2ceda69678733192418f9eb6bfd458668

  • SHA512

    93d3fcfaa446b7d151f9288afcb10d59f99807457841cdb2ba0971ae22b02931b3115eedb662ba0e9a83ba15ca417405cf4be217409bcf2a663c2c430ed4c57d

  • SSDEEP

    12288:h1OgLdaORo99/rsFEt5hDG0SAMs9jR/jeRJKu9TJdwYGZtyjTje5jOSpJy:h1OYdaOROBsFEt5hDG0SAMs9jR/jaJnr

Malware Config

Targets

    • Target

      3a00617215d9016cdf3a79bd21be4b4d_JaffaCakes118

    • Size

      724KB

    • MD5

      3a00617215d9016cdf3a79bd21be4b4d

    • SHA1

      b0096448d2784a6c50314593d07cb536e57ab537

    • SHA256

      05b9b42be478a79e6b06a61db08145d2ceda69678733192418f9eb6bfd458668

    • SHA512

      93d3fcfaa446b7d151f9288afcb10d59f99807457841cdb2ba0971ae22b02931b3115eedb662ba0e9a83ba15ca417405cf4be217409bcf2a663c2c430ed4c57d

    • SSDEEP

      12288:h1OgLdaORo99/rsFEt5hDG0SAMs9jR/jeRJKu9TJdwYGZtyjTje5jOSpJy:h1OYdaOROBsFEt5hDG0SAMs9jR/jaJnr

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Drops Chrome extension

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

MITRE ATT&CK Enterprise v15

Tasks