Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    3d83fdeed9d5e987900701f236a7de34_JaffaCakes118

  • Size

    670KB

  • Sample

    241013-dvlqla1bnr

  • MD5

    3d83fdeed9d5e987900701f236a7de34

  • SHA1

    6235bacdfcb8d0034c076b81048adb2dc61f63d5

  • SHA256

    20709f36c81aa9cc9e1a852f3fcbca07d79e9a933024daff36a6fdd30e5b409a

  • SHA512

    a147eacb72e8577618908fa2f328deab25975667ac88996dd63d981045fa4ea1f3391544b5074fedcf9a4bfdbf75f4ebf5bba12f9bccafdf82167d481e89f684

  • SSDEEP

    12288:8hdsll5H+iYbHW7CQV1POhmmp+ZGnTtmg3Fxx7JvdakTNacsvHNe:8hiH+iYb27CQjcmi+QnTN3vJxdjpaDN

Malware Config

Targets

    • Target

      3d83fdeed9d5e987900701f236a7de34_JaffaCakes118

    • Size

      670KB

    • MD5

      3d83fdeed9d5e987900701f236a7de34

    • SHA1

      6235bacdfcb8d0034c076b81048adb2dc61f63d5

    • SHA256

      20709f36c81aa9cc9e1a852f3fcbca07d79e9a933024daff36a6fdd30e5b409a

    • SHA512

      a147eacb72e8577618908fa2f328deab25975667ac88996dd63d981045fa4ea1f3391544b5074fedcf9a4bfdbf75f4ebf5bba12f9bccafdf82167d481e89f684

    • SSDEEP

      12288:8hdsll5H+iYbHW7CQV1POhmmp+ZGnTtmg3Fxx7JvdakTNacsvHNe:8hiH+iYb27CQjcmi+QnTN3vJxdjpaDN

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Drops Chrome extension

MITRE ATT&CK Enterprise v15

Tasks