Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    JaffaCakes118_139fe589e46d20919cff2c174895f8a8

  • Size

    1.5MB

  • Sample

    250123-et1zkasqgl

  • MD5

    139fe589e46d20919cff2c174895f8a8

  • SHA1

    a330e814283317c55cbada223f806e04dd68ff9c

  • SHA256

    56561ecc97b07f026accd876f9b6ea0c74194be554ce3015efbf1ca6792771ef

  • SHA512

    4f0d0c7226693d5df3c56e3b157f77529f593157bc0f1274d733018c3e854088c5f826ce16e5267ca99d46eb942ed0750b5f825b803a3256b279c56ea85af5f1

  • SSDEEP

    24576:FMxqE1DXqUcv/RK/cRgOnmq9g6SMOAYA73MMgbeBk1xbkX2VLe/:FMxqeD6UcvKcOU7m6SMOOYMgbeBk1Om0

Malware Config

Targets

    • Target

      JaffaCakes118_139fe589e46d20919cff2c174895f8a8

    • Size

      1.5MB

    • MD5

      139fe589e46d20919cff2c174895f8a8

    • SHA1

      a330e814283317c55cbada223f806e04dd68ff9c

    • SHA256

      56561ecc97b07f026accd876f9b6ea0c74194be554ce3015efbf1ca6792771ef

    • SHA512

      4f0d0c7226693d5df3c56e3b157f77529f593157bc0f1274d733018c3e854088c5f826ce16e5267ca99d46eb942ed0750b5f825b803a3256b279c56ea85af5f1

    • SSDEEP

      24576:FMxqE1DXqUcv/RK/cRgOnmq9g6SMOAYA73MMgbeBk1xbkX2VLe/:FMxqeD6UcvKcOU7m6SMOOYMgbeBk1Om0

    • Detected google phishing page

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Legitimate hosting services abused for malware hosting/C2

MITRE ATT&CK Enterprise v15

Tasks