Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
JaffaCakes118_185f361b997a4c24bd67d076c5ae3576
-
Size
332KB
-
Sample
250222-j4mxxatnt4
-
MD5
185f361b997a4c24bd67d076c5ae3576
-
SHA1
7e7c487878326106249fbb3a39f8fdfe1b40395a
-
SHA256
4a41a6ee8c354b8c4d2c058173f9e95feaccc20616f87d36584fcdc8b81e23e2
-
SHA512
35d22485e68ec479efdbe3c33bdaa397d1afdab2670e76130da3f239af976841c2c076b462fbccabebcb8350945dd86fa3477e0f51a6de1c703bcc0792d3326c
-
SSDEEP
3072:Gaxvos7J0wbx24Pu++slAhKAFRn1gs4vJi+DhVrfQLDMVKuVbewXRP5/mw:GahlKL+Ah3FV1bcJzDHfeDnuVbewl5/z
Malware Config
Targets
-
-
Target
JaffaCakes118_185f361b997a4c24bd67d076c5ae3576
-
Size
332KB
-
MD5
185f361b997a4c24bd67d076c5ae3576
-
SHA1
7e7c487878326106249fbb3a39f8fdfe1b40395a
-
SHA256
4a41a6ee8c354b8c4d2c058173f9e95feaccc20616f87d36584fcdc8b81e23e2
-
SHA512
35d22485e68ec479efdbe3c33bdaa397d1afdab2670e76130da3f239af976841c2c076b462fbccabebcb8350945dd86fa3477e0f51a6de1c703bcc0792d3326c
-
SSDEEP
3072:Gaxvos7J0wbx24Pu++slAhKAFRn1gs4vJi+DhVrfQLDMVKuVbewXRP5/mw:GahlKL+Ah3FV1bcJzDHfeDnuVbewl5/z
Score10/10-
Modifies firewall policy service
-
Adds policy Run key to start application
-
Boot or Logon Autostart Execution: Active Setup
Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
3Active Setup
1Registry Run Keys / Startup Folder
2Create or Modify System Process
1Windows Service
1Privilege Escalation
Boot or Logon Autostart Execution
3Active Setup
1Registry Run Keys / Startup Folder
2Create or Modify System Process
1Windows Service
1