Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    3ce380d5db10cc81fe689d502460971c_JaffaCakes118

  • Size

    321KB

  • Sample

    241013-a4yvqszgke

  • MD5

    3ce380d5db10cc81fe689d502460971c

  • SHA1

    b4b06941a63364f67e3d13fe0104dad7cbe66742

  • SHA256

    69f78fc3dd42063dbe2e6c0233067c34271d0dcf7d2d6c44b23463a25345b16c

  • SHA512

    20576563c8a425a7a00e2614e0cb9997aaece39694a6c02a60429844733c28b920d684fa80f10603e9ad001325dfacc3d9831c7f94d77c3ef0a3360d21e4f99e

  • SSDEEP

    6144:ePdZrnE4ogL2B0lsdA+TyzQm74p/0QzMuSvi:g9nEo1lsdAgEQm74p/04Dai

Malware Config

Targets

    • Target

      3ce380d5db10cc81fe689d502460971c_JaffaCakes118

    • Size

      321KB

    • MD5

      3ce380d5db10cc81fe689d502460971c

    • SHA1

      b4b06941a63364f67e3d13fe0104dad7cbe66742

    • SHA256

      69f78fc3dd42063dbe2e6c0233067c34271d0dcf7d2d6c44b23463a25345b16c

    • SHA512

      20576563c8a425a7a00e2614e0cb9997aaece39694a6c02a60429844733c28b920d684fa80f10603e9ad001325dfacc3d9831c7f94d77c3ef0a3360d21e4f99e

    • SSDEEP

      6144:ePdZrnE4ogL2B0lsdA+TyzQm74p/0QzMuSvi:g9nEo1lsdAgEQm74p/04Dai

    • Executes dropped EXE

    • Loads dropped DLL

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks