Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
JaffaCakes118_8a9717cb31f53b2ddeb8fc70dfb6dd16
-
Size
228KB
-
Sample
250328-mjy18avte1
-
MD5
8a9717cb31f53b2ddeb8fc70dfb6dd16
-
SHA1
e449fcf67400d8d3c7df7341815cd11f1c487602
-
SHA256
14169e8f97adf6693fadd5f732dc445c7b59f8683c7938b3bd66fd21aa5f976b
-
SHA512
db5528713b869ae27cfa9eebdda4caafbdfcada3a8423b01d44e8b4126af9048cae7634a58a9571b40f1eb3bf93e3cfb6ebd6ce7ce4fa6fbfa9466a19fd450ce
-
SSDEEP
6144:c2ZpDuIqCHE28LuU4SDOZ+5H88EZeeSzbjnNu91RrqI/:cCDuxamSUDO4HfEZeeSLnA91
Malware Config
Targets
-
-
Target
JaffaCakes118_8a9717cb31f53b2ddeb8fc70dfb6dd16
-
Size
228KB
-
MD5
8a9717cb31f53b2ddeb8fc70dfb6dd16
-
SHA1
e449fcf67400d8d3c7df7341815cd11f1c487602
-
SHA256
14169e8f97adf6693fadd5f732dc445c7b59f8683c7938b3bd66fd21aa5f976b
-
SHA512
db5528713b869ae27cfa9eebdda4caafbdfcada3a8423b01d44e8b4126af9048cae7634a58a9571b40f1eb3bf93e3cfb6ebd6ce7ce4fa6fbfa9466a19fd450ce
-
SSDEEP
6144:c2ZpDuIqCHE28LuU4SDOZ+5H88EZeeSzbjnNu91RrqI/:cCDuxamSUDO4HfEZeeSLnA91
Score10/10-
Modifies visiblity of hidden/system files in Explorer
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
Adds Run key to start application
-
MITRE ATT&CK Enterprise v15
Privilege Escalation
Boot or Logon Autostart Execution
1Registry Run Keys / Startup Folder
1Defense Evasion
Hide Artifacts
1Hidden Files and Directories
1Modify Registry
2