Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

JaffaCakes...ab.exe

windows7-x64

7

JaffaCakes...ab.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_8a9126fd351fe25c8e9a127cfd04e2ab

  • Size

    220KB

  • Sample

    250328-l781navscx

  • MD5

    8a9126fd351fe25c8e9a127cfd04e2ab

  • SHA1

    f72420060cb4b398a9b01f8566340ff6d08d3845

  • SHA256

    a8ca7b61fd1dadf66ed18a03c340e4ba9d9df8ae6bf561519638430a579ea13d

  • SHA512

    84ce4541371bdfd4b3928b03fc822a1dce76c475bdad320057f34c256b04010482471dd622bcc1a51b7cd4ff0714c68fb55e2df2fa3b11c581307240ce49d083

  • SSDEEP

    3072:w1D6LeSl5Htc5ckACyJiMAx9yZw4tVD29IE1N:cgewNiSJiMAx0W

Score
7/10
credential_accessdiscoveryspywarestealer

Malware Config

Targets

    • Target

      JaffaCakes118_8a9126fd351fe25c8e9a127cfd04e2ab

    • Size

      220KB

    • MD5

      8a9126fd351fe25c8e9a127cfd04e2ab

    • SHA1

      f72420060cb4b398a9b01f8566340ff6d08d3845

    • SHA256

      a8ca7b61fd1dadf66ed18a03c340e4ba9d9df8ae6bf561519638430a579ea13d

    • SHA512

      84ce4541371bdfd4b3928b03fc822a1dce76c475bdad320057f34c256b04010482471dd622bcc1a51b7cd4ff0714c68fb55e2df2fa3b11c581307240ce49d083

    • SSDEEP

      3072:w1D6LeSl5Htc5ckACyJiMAx9yZw4tVD29IE1N:cgewNiSJiMAx0W

    Score
    7/10
    discoverycredential_accessspywarestealer

    • Executes dropped EXE

    • Reads data files stored by FTP clients

      Tries to access configuration files associated with programs like FileZilla.

      spywarestealer

    • Reads local data of messenger clients

      Infostealers often target stored data of messaging applications, which can include saved credentials and account information.

      spywarestealer

    • Unsecured Credentials: Credentials In Files

      Steal credentials from unsecured files.

      credential_accessstealer
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks