Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    766b29da638aa2008ba6f8d7857c9800_JaffaCakes118

  • Size

    146KB

  • Sample

    241027-239pdsskgn

  • MD5

    766b29da638aa2008ba6f8d7857c9800

  • SHA1

    13404986bc0aba8181c7a523a114fde13173e3f7

  • SHA256

    4d2ee79952161eafae4b799b564cb5a98492dea90ec618054a139b9ed2f14d02

  • SHA512

    89df081def19ad8d343a91bb5ea560daf64e1e5e39b33de50395725278c439b5a59cb79664deed42d53aabfbec95b6d582811f5344e7adf3c22f10ca1a9df0f3

  • SSDEEP

    3072:eE5dzlmn6G7eLI7+F5cyKvnnr8WGt1FiSmuniVjG/:x5X9r0ancyKvnQjF59gjm

Malware Config

Targets

    • Target

      766b29da638aa2008ba6f8d7857c9800_JaffaCakes118

    • Size

      146KB

    • MD5

      766b29da638aa2008ba6f8d7857c9800

    • SHA1

      13404986bc0aba8181c7a523a114fde13173e3f7

    • SHA256

      4d2ee79952161eafae4b799b564cb5a98492dea90ec618054a139b9ed2f14d02

    • SHA512

      89df081def19ad8d343a91bb5ea560daf64e1e5e39b33de50395725278c439b5a59cb79664deed42d53aabfbec95b6d582811f5344e7adf3c22f10ca1a9df0f3

    • SSDEEP

      3072:eE5dzlmn6G7eLI7+F5cyKvnnr8WGt1FiSmuniVjG/:x5X9r0ancyKvnQjF59gjm

    • Deletes itself

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks