Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    524515bcbb189d94ae0a3b48fa8f1622_JaffaCakes118

  • Size

    1.8MB

  • Sample

    241017-q4n9aszdlc

  • MD5

    524515bcbb189d94ae0a3b48fa8f1622

  • SHA1

    fb5fa3b9341a22981b150cc0fae0a24fddad5ed1

  • SHA256

    6685e65af7eef43313870f946aad404f6405b7abb3fafe9db495f987cf330f1e

  • SHA512

    a6917d2c44ae6f84fe6ac0fa3dae8de7fde9aad56742a33a611bf79375a3dab5c539084f415f5f7c69ac61c62e4610d5285dfa7900686f022e0a4f33435165c3

  • SSDEEP

    49152:S92nADrGFOsHJMdwvluzYLq1NE1ACwKbaShgnqzVfVRzWC:iiFD68u0GU1RnhhgnIVt4C

Malware Config

Targets

    • Target

      524515bcbb189d94ae0a3b48fa8f1622_JaffaCakes118

    • Size

      1.8MB

    • MD5

      524515bcbb189d94ae0a3b48fa8f1622

    • SHA1

      fb5fa3b9341a22981b150cc0fae0a24fddad5ed1

    • SHA256

      6685e65af7eef43313870f946aad404f6405b7abb3fafe9db495f987cf330f1e

    • SHA512

      a6917d2c44ae6f84fe6ac0fa3dae8de7fde9aad56742a33a611bf79375a3dab5c539084f415f5f7c69ac61c62e4610d5285dfa7900686f022e0a4f33435165c3

    • SSDEEP

      49152:S92nADrGFOsHJMdwvluzYLq1NE1ACwKbaShgnqzVfVRzWC:iiFD68u0GU1RnhhgnIVt4C

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Adds Run key to start application

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks