Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    3d4f0f2d633453a006f8606d88f4d4c1_JaffaCakes118

  • Size

    717KB

  • Sample

    241013-cz3n8syflr

  • MD5

    3d4f0f2d633453a006f8606d88f4d4c1

  • SHA1

    ab0c80d8c269699492da6c4242df4bb702919ed9

  • SHA256

    2231638a87aa94024734e6e93473bc2e6b5b5be472a7fc77a0ffa3a694297cb1

  • SHA512

    59203b93e8a0ef391dd6d10e9f5fba7beeadac21ddc6da82847473a8a374d0f4594028037206ad32af902b62563779107f4bb3e59ed8fe8705de8374c148d83f

  • SSDEEP

    12288:UKnekrL58tmyRODvShqBP64KgNxB2iUnmIIrRhQi+hUCygJ9SXn7VknjD0g53KTV:9LiowqBPC82nmIIrpszB9QYjD/OV

Malware Config

Targets

    • Target

      3d4f0f2d633453a006f8606d88f4d4c1_JaffaCakes118

    • Size

      717KB

    • MD5

      3d4f0f2d633453a006f8606d88f4d4c1

    • SHA1

      ab0c80d8c269699492da6c4242df4bb702919ed9

    • SHA256

      2231638a87aa94024734e6e93473bc2e6b5b5be472a7fc77a0ffa3a694297cb1

    • SHA512

      59203b93e8a0ef391dd6d10e9f5fba7beeadac21ddc6da82847473a8a374d0f4594028037206ad32af902b62563779107f4bb3e59ed8fe8705de8374c148d83f

    • SSDEEP

      12288:UKnekrL58tmyRODvShqBP64KgNxB2iUnmIIrRhQi+hUCygJ9SXn7VknjD0g53KTV:9LiowqBPC82nmIIrpszB9QYjD/OV

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Drops Chrome extension

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

MITRE ATT&CK Enterprise v15

Tasks