Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    JaffaCakes118_e471b63e15d4da0aa98ca68218d93d3d

  • Size

    40KB

  • Sample

    250211-kb7x2s1lcr

  • MD5

    e471b63e15d4da0aa98ca68218d93d3d

  • SHA1

    ea38577e57ad9baf59ea0aa6167cc2d26a41f5bf

  • SHA256

    14b955dd60d2a9dae7288a13c4232814cd44cd85b75df747512ce7fb7a826d0a

  • SHA512

    86e0f9f2b78e7c9aef621846d4027cd8991919436e1528ff390f2e0f130d9456eab60aba2db3e9487406aaa9ed9ef19148539b3c3624d9dd4be600741935aa37

  • SSDEEP

    768:nyxqjQl/EMQt4Oei7RwsHxKANM0nDhlzOQdJonGME:yxqjQ+P04wsZLnDrCplE

Malware Config

Targets

    • Target

      JaffaCakes118_e471b63e15d4da0aa98ca68218d93d3d

    • Size

      40KB

    • MD5

      e471b63e15d4da0aa98ca68218d93d3d

    • SHA1

      ea38577e57ad9baf59ea0aa6167cc2d26a41f5bf

    • SHA256

      14b955dd60d2a9dae7288a13c4232814cd44cd85b75df747512ce7fb7a826d0a

    • SHA512

      86e0f9f2b78e7c9aef621846d4027cd8991919436e1528ff390f2e0f130d9456eab60aba2db3e9487406aaa9ed9ef19148539b3c3624d9dd4be600741935aa37

    • SSDEEP

      768:nyxqjQl/EMQt4Oei7RwsHxKANM0nDhlzOQdJonGME:yxqjQ+P04wsZLnDrCplE

    • Neshta

      Malware from the neshta family is designed to infect itself into other files to spread itself and cause damage.

    • Neshta family

    • Downloads MZ/PE file

    • Loads dropped DLL

    • Modifies system executable filetype association

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

MITRE ATT&CK Enterprise v15

Tasks