Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

7

e827447121...18.exe

windows7-x64

7

e827447121...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e8274471213b3d4a5ab49042def71d00_JaffaCakes118

  • Size

    804KB

  • Sample

    240408-xdny6sge54

  • MD5

    e8274471213b3d4a5ab49042def71d00

  • SHA1

    b3206ed4b3c3c60572df0f98b49e610e7804a7f6

  • SHA256

    e389a939f35aee9a9706fadd7bcb97ff7ef92ee1a1857121c83cbd760d946928

  • SHA512

    964b6462778208a313a9b2f0ece402c2d5028a4a0f169c3fae40b7d5cc8b9f5dafb87c477c5c546efef38c7177158a8e5a1a004d5f94262fdc75ffaf4691e190

  • SSDEEP

    24576:z6Izw8F12PphBqQ5wCp13KSVXfECVe9Y+gbbI4kD:z678FkPprmQaSBu9ubI

Score
7/10
evasionthemida

Malware Config

Targets

    • Target

      e8274471213b3d4a5ab49042def71d00_JaffaCakes118

    • Size

      804KB

    • MD5

      e8274471213b3d4a5ab49042def71d00

    • SHA1

      b3206ed4b3c3c60572df0f98b49e610e7804a7f6

    • SHA256

      e389a939f35aee9a9706fadd7bcb97ff7ef92ee1a1857121c83cbd760d946928

    • SHA512

      964b6462778208a313a9b2f0ece402c2d5028a4a0f169c3fae40b7d5cc8b9f5dafb87c477c5c546efef38c7177158a8e5a1a004d5f94262fdc75ffaf4691e190

    • SSDEEP

      24576:z6Izw8F12PphBqQ5wCp13KSVXfECVe9Y+gbbI4kD:z678FkPprmQaSBu9ubI

    Score
    7/10
    evasionthemida

    • Identifies Wine through registry keys

      Wine is a compatibility layer capable of running Windows applications, which can be used as sandboxing environment.

      evasion

    • Themida packer

      Detects Themida, an advanced Windows software protection system.

      themida

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks