Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
524515bcbb189d94ae0a3b48fa8f1622_JaffaCakes118
-
Size
1.8MB
-
Sample
241017-q4n9aszdlc
-
MD5
524515bcbb189d94ae0a3b48fa8f1622
-
SHA1
fb5fa3b9341a22981b150cc0fae0a24fddad5ed1
-
SHA256
6685e65af7eef43313870f946aad404f6405b7abb3fafe9db495f987cf330f1e
-
SHA512
a6917d2c44ae6f84fe6ac0fa3dae8de7fde9aad56742a33a611bf79375a3dab5c539084f415f5f7c69ac61c62e4610d5285dfa7900686f022e0a4f33435165c3
-
SSDEEP
49152:S92nADrGFOsHJMdwvluzYLq1NE1ACwKbaShgnqzVfVRzWC:iiFD68u0GU1RnhhgnIVt4C
Malware Config
Targets
-
-
Target
524515bcbb189d94ae0a3b48fa8f1622_JaffaCakes118
-
Size
1.8MB
-
MD5
524515bcbb189d94ae0a3b48fa8f1622
-
SHA1
fb5fa3b9341a22981b150cc0fae0a24fddad5ed1
-
SHA256
6685e65af7eef43313870f946aad404f6405b7abb3fafe9db495f987cf330f1e
-
SHA512
a6917d2c44ae6f84fe6ac0fa3dae8de7fde9aad56742a33a611bf79375a3dab5c539084f415f5f7c69ac61c62e4610d5285dfa7900686f022e0a4f33435165c3
-
SSDEEP
49152:S92nADrGFOsHJMdwvluzYLq1NE1ACwKbaShgnqzVfVRzWC:iiFD68u0GU1RnhhgnIVt4C
Score7/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Adds Run key to start application
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Modify Registry
3Subvert Trust Controls
1Install Root Certificate
1