Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
JaffaCakes118_139fe589e46d20919cff2c174895f8a8
-
Size
1.5MB
-
Sample
250123-et1zkasqgl
-
MD5
139fe589e46d20919cff2c174895f8a8
-
SHA1
a330e814283317c55cbada223f806e04dd68ff9c
-
SHA256
56561ecc97b07f026accd876f9b6ea0c74194be554ce3015efbf1ca6792771ef
-
SHA512
4f0d0c7226693d5df3c56e3b157f77529f593157bc0f1274d733018c3e854088c5f826ce16e5267ca99d46eb942ed0750b5f825b803a3256b279c56ea85af5f1
-
SSDEEP
24576:FMxqE1DXqUcv/RK/cRgOnmq9g6SMOAYA73MMgbeBk1xbkX2VLe/:FMxqeD6UcvKcOU7m6SMOOYMgbeBk1Om0
Static task
static1
Behavioral task
behavioral1
Sample
JaffaCakes118_139fe589e46d20919cff2c174895f8a8.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
JaffaCakes118_139fe589e46d20919cff2c174895f8a8.exe
Resource
win10v2004-20241007-en
Malware Config
Targets
-
-
Target
JaffaCakes118_139fe589e46d20919cff2c174895f8a8
-
Size
1.5MB
-
MD5
139fe589e46d20919cff2c174895f8a8
-
SHA1
a330e814283317c55cbada223f806e04dd68ff9c
-
SHA256
56561ecc97b07f026accd876f9b6ea0c74194be554ce3015efbf1ca6792771ef
-
SHA512
4f0d0c7226693d5df3c56e3b157f77529f593157bc0f1274d733018c3e854088c5f826ce16e5267ca99d46eb942ed0750b5f825b803a3256b279c56ea85af5f1
-
SSDEEP
24576:FMxqE1DXqUcv/RK/cRgOnmq9g6SMOAYA73MMgbeBk1xbkX2VLe/:FMxqeD6UcvKcOU7m6SMOOYMgbeBk1Om0
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Legitimate hosting services abused for malware hosting/C2
-