Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    3fda62d225b996689370e49ace584024_JaffaCakes118

  • Size

    228KB

  • Sample

    241013-pm99rs1dnp

  • MD5

    3fda62d225b996689370e49ace584024

  • SHA1

    5ac51aaa9af6c28153c2c84b20580cfe576a2345

  • SHA256

    19075bef02751617b806bed66352f791ab93cf456e4e4debd66f9d0adfadeab9

  • SHA512

    b75090ea01d31df3c10e98bcc03ecf4a4ebfce4853d0592759cee8d0b51c212225d657461e4ca14dc93154daedb7f38ffc7e1ea5aad024354b6ffff55e6af390

  • SSDEEP

    6144:zAmIhgpYy4c2+keFKEK7kmR/qszYX1932QVTH3jRVI6a:zVIhgpYR+keoAmRCsm9Zs

Score
7/10

Malware Config

Targets

    • Target

      3fda62d225b996689370e49ace584024_JaffaCakes118

    • Size

      228KB

    • MD5

      3fda62d225b996689370e49ace584024

    • SHA1

      5ac51aaa9af6c28153c2c84b20580cfe576a2345

    • SHA256

      19075bef02751617b806bed66352f791ab93cf456e4e4debd66f9d0adfadeab9

    • SHA512

      b75090ea01d31df3c10e98bcc03ecf4a4ebfce4853d0592759cee8d0b51c212225d657461e4ca14dc93154daedb7f38ffc7e1ea5aad024354b6ffff55e6af390

    • SSDEEP

      6144:zAmIhgpYy4c2+keFKEK7kmR/qszYX1932QVTH3jRVI6a:zVIhgpYR+keoAmRCsm9Zs

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops desktop.ini file(s)

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks