Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
JaffaCakes118_70ba000e50bc4b7ac3e85e955f6f7d73
-
Size
336KB
-
Sample
250313-qg7r5atta1
-
MD5
70ba000e50bc4b7ac3e85e955f6f7d73
-
SHA1
c78da90b8c4567d9607cfb2966f7420adfefac63
-
SHA256
ee344a0dff7045de085eb79717d64b7e5318074bec65b05daee3525a7202fb9e
-
SHA512
ba9d3be54ed3e7edd11bb55771c233ee4c4261dc3119b1256588dd6d99a40eb34be4a54139d2346a85548d5b0c943c7e6a4d02ef929bbd999e8c92c514bc1cf1
-
SSDEEP
6144:lG78LjzOANvSAsQLqF9pXMiY3sGB6UduRfLtcmc:U7kmAN6omFMb3sGB6UduRfLaT
Malware Config
Targets
-
-
Target
JaffaCakes118_70ba000e50bc4b7ac3e85e955f6f7d73
-
Size
336KB
-
MD5
70ba000e50bc4b7ac3e85e955f6f7d73
-
SHA1
c78da90b8c4567d9607cfb2966f7420adfefac63
-
SHA256
ee344a0dff7045de085eb79717d64b7e5318074bec65b05daee3525a7202fb9e
-
SHA512
ba9d3be54ed3e7edd11bb55771c233ee4c4261dc3119b1256588dd6d99a40eb34be4a54139d2346a85548d5b0c943c7e6a4d02ef929bbd999e8c92c514bc1cf1
-
SSDEEP
6144:lG78LjzOANvSAsQLqF9pXMiY3sGB6UduRfLtcmc:U7kmAN6omFMb3sGB6UduRfLaT
Score10/10-
Modifies firewall policy service
-
Boot or Logon Autostart Execution: Active Setup
Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
1Active Setup
1Create or Modify System Process
1Windows Service
1Privilege Escalation
Boot or Logon Autostart Execution
1Active Setup
1Create or Modify System Process
1Windows Service
1