Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    4519d09c86a0335f4001eed14dbb121f_JaffaCakes118

  • Size

    1.0MB

  • Sample

    241015-blkqtszeqn

  • MD5

    4519d09c86a0335f4001eed14dbb121f

  • SHA1

    e55b924765320ac3311a4d0d26e831cc57f40966

  • SHA256

    b5505f28431cfd595e1372a3ff43658035cd950cd809333fa08840264316d802

  • SHA512

    859475df38e1394da60cd8eca0f76aec91b665d190cb1b11b768de773a231cfa2fbcad71f22f61bc1153c2d05fafb9511eab8903c64a225575d0f15380f3defd

  • SSDEEP

    24576:PLigfPqFt07HeIFbTuW2zhA5BALtOZd0X1siykb0f9AJ6X6iFCwHn:PLz0kdJE++oZd0lsiyk+9ACM6n

Malware Config

Targets

    • Target

      4519d09c86a0335f4001eed14dbb121f_JaffaCakes118

    • Size

      1.0MB

    • MD5

      4519d09c86a0335f4001eed14dbb121f

    • SHA1

      e55b924765320ac3311a4d0d26e831cc57f40966

    • SHA256

      b5505f28431cfd595e1372a3ff43658035cd950cd809333fa08840264316d802

    • SHA512

      859475df38e1394da60cd8eca0f76aec91b665d190cb1b11b768de773a231cfa2fbcad71f22f61bc1153c2d05fafb9511eab8903c64a225575d0f15380f3defd

    • SSDEEP

      24576:PLigfPqFt07HeIFbTuW2zhA5BALtOZd0X1siykb0f9AJ6X6iFCwHn:PLz0kdJE++oZd0lsiyk+9ACM6n

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Drops Chrome extension

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

MITRE ATT&CK Enterprise v15

Tasks