Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
JaffaCakes118_9818ef50933565b380ba49b9cc4e6792
-
Size
204KB
-
Sample
250204-zlvsss1qdw
-
MD5
9818ef50933565b380ba49b9cc4e6792
-
SHA1
3f5b4d14cf92f96e85f705693fa8f6f1777b2f6f
-
SHA256
a070bacade7fd6211af1c7cb40a39f74d2860f68903fd441fece210b35f53250
-
SHA512
0a34e056dc24dc513c46af77ea7b4a94ec09ab78d007aa59edde02a8391056d4b906f962b049115eea9d7ea335d9d82cafd27ef470d1385a344af79069b935a8
-
SSDEEP
3072:1mIW8b0tQ9nLHbB9W0c1TqECzR/mkSYGrl9ymgYUWzn:sdc4QxL7B9W0c1RCzR/fSmlU
Malware Config
Targets
-
-
Target
JaffaCakes118_9818ef50933565b380ba49b9cc4e6792
-
Size
204KB
-
MD5
9818ef50933565b380ba49b9cc4e6792
-
SHA1
3f5b4d14cf92f96e85f705693fa8f6f1777b2f6f
-
SHA256
a070bacade7fd6211af1c7cb40a39f74d2860f68903fd441fece210b35f53250
-
SHA512
0a34e056dc24dc513c46af77ea7b4a94ec09ab78d007aa59edde02a8391056d4b906f962b049115eea9d7ea335d9d82cafd27ef470d1385a344af79069b935a8
-
SSDEEP
3072:1mIW8b0tQ9nLHbB9W0c1TqECzR/mkSYGrl9ymgYUWzn:sdc4QxL7B9W0c1RCzR/fSmlU
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2