Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    762ea736c643873172cf29a59c97a411_JaffaCakes118

  • Size

    1.1MB

  • Sample

    241027-12tfca1mgj

  • MD5

    762ea736c643873172cf29a59c97a411

  • SHA1

    6e39bc74c0f529fc99dc750cda897c2393977ba0

  • SHA256

    30621296fc09eba41ac402726679ff97b601ed89275a49e99ca3e63971b269ea

  • SHA512

    6ddb3715d90249037c542bd70d914a7562c56a84dee2f208d7469cc5973afb059e37e0ab37d87fe075a408dc9846a4d2ed3abaa258c4210e3347be8364fb6740

  • SSDEEP

    24576:h1OYdaO9OBsFEt5hDG0SAMs9jR/jaJnTJdwY68+UhnWb3aQR:h1OsSOEt5hDG0SAMs9j8nTJ2Y68hWGQR

Malware Config

Targets

    • Target

      762ea736c643873172cf29a59c97a411_JaffaCakes118

    • Size

      1.1MB

    • MD5

      762ea736c643873172cf29a59c97a411

    • SHA1

      6e39bc74c0f529fc99dc750cda897c2393977ba0

    • SHA256

      30621296fc09eba41ac402726679ff97b601ed89275a49e99ca3e63971b269ea

    • SHA512

      6ddb3715d90249037c542bd70d914a7562c56a84dee2f208d7469cc5973afb059e37e0ab37d87fe075a408dc9846a4d2ed3abaa258c4210e3347be8364fb6740

    • SSDEEP

      24576:h1OYdaO9OBsFEt5hDG0SAMs9jR/jaJnTJdwY68+UhnWb3aQR:h1OsSOEt5hDG0SAMs9j8nTJ2Y68hWGQR

    • Executes dropped EXE

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Drops Chrome extension

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

MITRE ATT&CK Enterprise v15

Tasks