Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    53fc0ddc43a1e102b9e44ce39dcd8070_JaffaCakes118

  • Size

    568KB

  • Sample

    241017-13rcdazbma

  • MD5

    53fc0ddc43a1e102b9e44ce39dcd8070

  • SHA1

    777cdb5aab5cdf6d02bfcd873443e111c989316d

  • SHA256

    d70511f413721027bca8bdf4d19a3734ffa6052e3c4357bbb258c7480767a277

  • SHA512

    f9322807e32a6c9008ee7ec8008d8c791a35ed4bf7fd79d7f0d7ebdfc8221c440a168f28fddfd798aecec410c72c9cc934fada8dc284ad94b5154726bd6057d9

  • SSDEEP

    12288:FG4pRRooxOTW2gRJFC8NMB/Kmw9wKDcU1Qm76WDMMK0:cAooxOC2qC8wIQm7BDMMK0

Malware Config

Targets

    • Target

      53fc0ddc43a1e102b9e44ce39dcd8070_JaffaCakes118

    • Size

      568KB

    • MD5

      53fc0ddc43a1e102b9e44ce39dcd8070

    • SHA1

      777cdb5aab5cdf6d02bfcd873443e111c989316d

    • SHA256

      d70511f413721027bca8bdf4d19a3734ffa6052e3c4357bbb258c7480767a277

    • SHA512

      f9322807e32a6c9008ee7ec8008d8c791a35ed4bf7fd79d7f0d7ebdfc8221c440a168f28fddfd798aecec410c72c9cc934fada8dc284ad94b5154726bd6057d9

    • SSDEEP

      12288:FG4pRRooxOTW2gRJFC8NMB/Kmw9wKDcU1Qm76WDMMK0:cAooxOC2qC8wIQm7BDMMK0

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks