Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    42bd607d00886ff9f55bb59b5753e830_JaffaCakes118

  • Size

    52KB

  • Sample

    241014-r5stjsvalm

  • MD5

    42bd607d00886ff9f55bb59b5753e830

  • SHA1

    17dc0d93d39128af731ac5702824a8103deb3ea4

  • SHA256

    d2a948830bc68f57b96a1d379b739d166c511d7bd41ea8b284180eb639519e7b

  • SHA512

    8f2e0480784b1973bf03ff265ed425a9eb02f254fc509e5e632da6cbc8c12cf56087ba18c1df6508d9cdc97a3b5a313fd38af2b76d72ac1f315eb38f11d4d163

  • SSDEEP

    768:fv4biFaEtB4Y//aiwFQvzhvoJRYMMDHjvEXINV/nAonIeQzGFM:H+iFaEtB4Y//aXoonYMMHYINV7IeYGq

Score
10/10

Malware Config

Targets

    • Target

      42bd607d00886ff9f55bb59b5753e830_JaffaCakes118

    • Size

      52KB

    • MD5

      42bd607d00886ff9f55bb59b5753e830

    • SHA1

      17dc0d93d39128af731ac5702824a8103deb3ea4

    • SHA256

      d2a948830bc68f57b96a1d379b739d166c511d7bd41ea8b284180eb639519e7b

    • SHA512

      8f2e0480784b1973bf03ff265ed425a9eb02f254fc509e5e632da6cbc8c12cf56087ba18c1df6508d9cdc97a3b5a313fd38af2b76d72ac1f315eb38f11d4d163

    • SSDEEP

      768:fv4biFaEtB4Y//aiwFQvzhvoJRYMMDHjvEXINV/nAonIeQzGFM:H+iFaEtB4Y//aXoonYMMHYINV7IeYGq

    Score
    10/10
    • Modifies WinLogon for persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

    • Drops desktop.ini file(s)

    • Modifies WinLogon

    • Suspicious use of SetThreadContext

MITRE ATT&CK Enterprise v15

Tasks