Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

7

ec5e7e3130...18.exe

windows7-x64

8

ec5e7e3130...18.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ec5e7e3130e74b990c0be814058118bf_JaffaCakes118

  • Size

    45KB

  • Sample

    240411-bg5v7sbb7z

  • MD5

    ec5e7e3130e74b990c0be814058118bf

  • SHA1

    7e735e485321f9260007b1fe86b81ad514374987

  • SHA256

    b38a4554e2730f5a5b5d42d277908de268e2a1b7297347296e34fdecbaa81d0d

  • SHA512

    a03111c766d4c00560b1b4b635c57f6c05a704dc44c30f86315a1894c57a8e4c0852fc4f05a85184eb682fbea81ec9239098384ea569835800a26f93f5194ad4

  • SSDEEP

    768:Y1QNQMBO3Mqe9KZb0LB+8vGMRXyonbcuyD7UURfUJLJAnbcuyD7U:aQGeO3MB9KeY8vGMRXfnouy8z4nouy8

Score
8/10
adwarepersistencestealerupx

Malware Config

Targets

    • Target

      ec5e7e3130e74b990c0be814058118bf_JaffaCakes118

    • Size

      45KB

    • MD5

      ec5e7e3130e74b990c0be814058118bf

    • SHA1

      7e735e485321f9260007b1fe86b81ad514374987

    • SHA256

      b38a4554e2730f5a5b5d42d277908de268e2a1b7297347296e34fdecbaa81d0d

    • SHA512

      a03111c766d4c00560b1b4b635c57f6c05a704dc44c30f86315a1894c57a8e4c0852fc4f05a85184eb682fbea81ec9239098384ea569835800a26f93f5194ad4

    • SSDEEP

      768:Y1QNQMBO3Mqe9KZb0LB+8vGMRXyonbcuyD7UURfUJLJAnbcuyD7U:aQGeO3MB9KeY8vGMRXfnouy8z4nouy8

    Score
    8/10
    adwarepersistencestealerupx

    • Adds policy Run key to start application

      persistence

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

      stealeradware
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.