Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

JaffaCakes...af.exe

windows7-x64

10

JaffaCakes...af.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_632c6d7f9755f7f9acbe496b837772af

  • Size

    471KB

  • Sample

    250102-g2vhvszngq

  • MD5

    632c6d7f9755f7f9acbe496b837772af

  • SHA1

    16d7744f47c08211fb9c6f85260b88aa2eeb9b5b

  • SHA256

    a30741fcc6c8493d9dc2f111219c56e656320983a8e6260084885c6acb4d6f36

  • SHA512

    f9e8845aa11a7e6de27a8937cf8eeda00919ed36704c14867e7a12f35b85b756704b34ef3aac2d1eb9549d399916cfbe026096e364d17db6d415ce6e6d157c9e

  • SSDEEP

    12288:331TIGB1wdj3t+7MgEo25RQu0x7Wt1tR5WGjs8:3FpHwxrg0RCxewms8

Score
10/10
revengeratdiscoveryevasionstealer

Malware Config

Targets

    • Target

      JaffaCakes118_632c6d7f9755f7f9acbe496b837772af

    • Size

      471KB

    • MD5

      632c6d7f9755f7f9acbe496b837772af

    • SHA1

      16d7744f47c08211fb9c6f85260b88aa2eeb9b5b

    • SHA256

      a30741fcc6c8493d9dc2f111219c56e656320983a8e6260084885c6acb4d6f36

    • SHA512

      f9e8845aa11a7e6de27a8937cf8eeda00919ed36704c14867e7a12f35b85b756704b34ef3aac2d1eb9549d399916cfbe026096e364d17db6d415ce6e6d157c9e

    • SSDEEP

      12288:331TIGB1wdj3t+7MgEo25RQu0x7Wt1tR5WGjs8:3FpHwxrg0RCxewms8

    Score
    10/10
    discoveryevasion

    • Modifies firewall policy service

      evasion

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.