Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
JaffaCakes118_d028d02bab14c16c8750751b33891b9d
-
Size
324KB
-
Sample
250209-rg3c3stpc1
-
MD5
d028d02bab14c16c8750751b33891b9d
-
SHA1
a2b7862b85c5d89dbc037638e27a8a403f6a0496
-
SHA256
615c219d9619bfdbe14dcb8cf20e848131098594d44dc7c643a22afb22c85da9
-
SHA512
838b51d45145b143adee254bf206caca1c085e3bf42c8853bde98565c67c0514437ebd92586472d74eb8471dd71647714924e0fe2cd5a9d471f9d2158f13b20f
-
SSDEEP
6144:rGg7mBN13nrOBafV2HuCY1q48z/DFGLsPuJyp5bGSn8kNrMKFX2wdXh2Hvvs1XFw:r0AoEJrM2OEX+67rOEgPYpc3rPU
Malware Config
Targets
-
-
Target
JaffaCakes118_d028d02bab14c16c8750751b33891b9d
-
Size
324KB
-
MD5
d028d02bab14c16c8750751b33891b9d
-
SHA1
a2b7862b85c5d89dbc037638e27a8a403f6a0496
-
SHA256
615c219d9619bfdbe14dcb8cf20e848131098594d44dc7c643a22afb22c85da9
-
SHA512
838b51d45145b143adee254bf206caca1c085e3bf42c8853bde98565c67c0514437ebd92586472d74eb8471dd71647714924e0fe2cd5a9d471f9d2158f13b20f
-
SSDEEP
6144:rGg7mBN13nrOBafV2HuCY1q48z/DFGLsPuJyp5bGSn8kNrMKFX2wdXh2Hvvs1XFw:r0AoEJrM2OEX+67rOEgPYpc3rPU
Score6/10-
Writes to the Master Boot Record (MBR)
Bootkits write to the MBR to gain persistence at a level below the operating system.
-
Suspicious use of SetThreadContext
-