Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
5629426927feea36fff579535bc7e964_JaffaCakes118
-
Size
321KB
-
Sample
241018-h9p4savand
-
MD5
5629426927feea36fff579535bc7e964
-
SHA1
b8c0a90bad82ba5223ccaa7eb908b0d3281463be
-
SHA256
ad30622c79f89bc2b287dcfcd59612806a8de49501150ec0bde367efa468c36a
-
SHA512
c8098aba3eafc86d092c3d90cb23f06796f3dfa0e977f205826dbd02fe9465bd96f77db62f332b2c4bf68a0238c53288bddeb99abc14d69c9109011dbda10551
-
SSDEEP
6144:o+9m2P7CqfAh8EfNiApv9TFLBykEvVgiwGkBfKauC0GP9pwW93:aCgh8EfMAR9fykEDaByaQYwO
Behavioral task
behavioral1
Sample
5629426927feea36fff579535bc7e964_JaffaCakes118.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
5629426927feea36fff579535bc7e964_JaffaCakes118.exe
Resource
win10v2004-20241007-en
Malware Config
Targets
-
-
Target
5629426927feea36fff579535bc7e964_JaffaCakes118
-
Size
321KB
-
MD5
5629426927feea36fff579535bc7e964
-
SHA1
b8c0a90bad82ba5223ccaa7eb908b0d3281463be
-
SHA256
ad30622c79f89bc2b287dcfcd59612806a8de49501150ec0bde367efa468c36a
-
SHA512
c8098aba3eafc86d092c3d90cb23f06796f3dfa0e977f205826dbd02fe9465bd96f77db62f332b2c4bf68a0238c53288bddeb99abc14d69c9109011dbda10551
-
SSDEEP
6144:o+9m2P7CqfAh8EfNiApv9TFLBykEvVgiwGkBfKauC0GP9pwW93:aCgh8EfMAR9fykEDaByaQYwO
Score6/10-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-
MITRE ATT&CK Enterprise v15
Defense Evasion
Modify Registry
1Pre-OS Boot
1Bootkit
1Subvert Trust Controls
1Install Root Certificate
1