Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

6

Static

static

5

JaffaCakes...ed.exe

windows7-x64

6

JaffaCakes...ed.exe

windows10-2004-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_8a7b71c3427817f6db20b6beb20ddeed

  • Size

    326KB

  • Sample

    250328-j3xeystvcw

  • MD5

    8a7b71c3427817f6db20b6beb20ddeed

  • SHA1

    e2cd1e2c4892ab62766d828fae4786f16f4dd0b5

  • SHA256

    6c4640802e619d3d84920c3e744c00bbffc2b2da7e2e2172b85a7b85836cf2f4

  • SHA512

    9e899c52794385a33d605fe90945fc7ea0fc8272c1a7dc416a0201cdc6e84954ec79e155946bb7f4bd87653593fb28be2838bb0c590e32b7d48ce73bf9bd8f07

  • SSDEEP

    6144:+mvz44tWZcwPdTtvYXLPi3pJu9GjTEQX7emSvpBH7r3+jleyDV7Rex:1htgFTtvYWXIGjTE479MpBH/Si

Score
6/10
bootkitdiscoverypersistenceupx

Malware Config

Targets

    • Target

      JaffaCakes118_8a7b71c3427817f6db20b6beb20ddeed

    • Size

      326KB

    • MD5

      8a7b71c3427817f6db20b6beb20ddeed

    • SHA1

      e2cd1e2c4892ab62766d828fae4786f16f4dd0b5

    • SHA256

      6c4640802e619d3d84920c3e744c00bbffc2b2da7e2e2172b85a7b85836cf2f4

    • SHA512

      9e899c52794385a33d605fe90945fc7ea0fc8272c1a7dc416a0201cdc6e84954ec79e155946bb7f4bd87653593fb28be2838bb0c590e32b7d48ce73bf9bd8f07

    • SSDEEP

      6144:+mvz44tWZcwPdTtvYXLPi3pJu9GjTEQX7emSvpBH7r3+jleyDV7Rex:1htgFTtvYWXIGjTE479MpBH/Si

    Score
    6/10
    bootkitdiscoverypersistenceupx

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks