Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

7

f103210174...18.exe

windows7-x64

7

f103210174...18.exe

windows10-2004-x64

7

$PLUGINSDI...on.dll

windows7-x64

3

$PLUGINSDI...on.dll

windows10-2004-x64

3

$_0_/TeamViewer_.exe

windows7-x64

7

$_0_/TeamViewer_.exe

windows10-2004-x64

7

$PLUGINSDI...LL.dll

windows7-x64

3

$PLUGINSDI...LL.dll

windows10-2004-x64

3

$PLUGINSDI...LL.dll

windows7-x64

3

$PLUGINSDI...LL.dll

windows10-2004-x64

3

$PLUGINSDI...nu.dll

windows7-x64

3

$PLUGINSDI...nu.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...on.dll

windows7-x64

3

$PLUGINSDI...on.dll

windows10-2004-x64

3

$PLUGINSDI...ec.dll

windows7-x64

3

$PLUGINSDI...ec.dll

windows10-2004-x64

3

$PLUGINSDI...ll.dll

windows7-x64

3

$PLUGINSDI...ll.dll

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f103210174ca562e80f82a94f5e0acd2_JaffaCakes118

  • Size

    1.6MB

  • Sample

    240415-n8dx1sgc4s

  • MD5

    f103210174ca562e80f82a94f5e0acd2

  • SHA1

    06934e885ecb4d7ca80a169cf818b6d01b616838

  • SHA256

    40486739b5d46f4f3472932563f7f01ee63585f66ba5c41f832af123ae2028d7

  • SHA512

    8ff8b65cbbec1ddd57442962a17dfd3e6d918c3047ff7e676c645a03185ec68e2c0b9c82feb0f757beafd0f0ed3e6286e063fd5840c4dd3b6a2ed0cfceb3cc55

  • SSDEEP

    24576:Q0DijvqNVh00DtKimip7kLHmkrSUbonNRW01h0a7PbEMSghnvbwLcm5y0K/pieEo:QMvt5nkLt2U0WSN7o3gVMgm53aFSqRN

Score
7/10
upx

Malware Config

Targets

    • Target

      f103210174ca562e80f82a94f5e0acd2_JaffaCakes118

    • Size

      1.6MB

    • MD5

      f103210174ca562e80f82a94f5e0acd2

    • SHA1

      06934e885ecb4d7ca80a169cf818b6d01b616838

    • SHA256

      40486739b5d46f4f3472932563f7f01ee63585f66ba5c41f832af123ae2028d7

    • SHA512

      8ff8b65cbbec1ddd57442962a17dfd3e6d918c3047ff7e676c645a03185ec68e2c0b9c82feb0f757beafd0f0ed3e6286e063fd5840c4dd3b6a2ed0cfceb3cc55

    • SSDEEP

      24576:Q0DijvqNVh00DtKimip7kLHmkrSUbonNRW01h0a7PbEMSghnvbwLcm5y0K/pieEo:QMvt5nkLt2U0WSN7o3gVMgm53aFSqRN

    Score
    7/10
    upx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

    • Target

      $PLUGINSDIR/TvGetVersion.dll

    • Size

      50KB

    • MD5

      7d4cdffd78fa41a10e00cdfb899990d3

    • SHA1

      51c445cc7933a92efe285b11d5a8a80dc69d1be1

    • SHA256

      b5e3a463393887c08219366ac3efd60e8b4991df874586702950de2baa83104d

    • SHA512

      8044c3a25957f68d7b7fd9d925c26f6726af9b29ad54eaf4b1eb1a3027f6f07670c678ef3dd2958130634cc49406b2d2378e20a35a43b8821fcd4355551122f7

    • SSDEEP

      768:0VkG68qeXUmypSIRcu7Tx7Ss1xS+KCDpR/vO4nnZr11t5JgX:0Vm4Um4W4dLKopR/PnZft5

    Score
    3/10
    behavioral3behavioral4

    • Target

      $_0_/TeamViewer_.exe

    • Size

      1.6MB

    • MD5

      d0b3eafefb58319f95ad55cb92ce9802

    • SHA1

      6778051d8e81ddd882f52a9471b365fc6739a239

    • SHA256

      6a69c877a8363dee7cd836759bf300061aafa4803572843bbe4207c5e72f8ccb

    • SHA512

      87d42cd1a95594affa2b8ceea582d0b599766e4d521dc7b9225fe60161318cb0a59284e62491d47621581236d08217f829e9561c0389279135a2b10c2cbbeef3

    • SSDEEP

      24576:WqNVh00DtKimip7kLHmkrSUbonNRW01h0a7PbEMSghnvbwLcm5y0K/pieEyfcxk/:3vt5nkLt2U0WSN7o3gVMgm53aFSqRN

    Score
    7/10
    upx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral5behavioral6

    • Target

      $PLUGINSDIR/FindProcDLL.dll

    • Size

      27KB

    • MD5

      6f73b00aef6c49eac62128ef3eca677e

    • SHA1

      1b6aff67d570e5ee61af2376247590eb49b728a1

    • SHA256

      6eb09ce25c7fc62e44dc2f71761c6d60dd4b2d0c7d15e9651980525103aac0a9

    • SHA512

      678fc4bf7d345eeb99a3420ec7d0071eaba302845e93b48527d9a2a9c406709cc44ec74d6a889e25a8351a463803f8713a833df3a1707a5ad50db05240a32938

    • SSDEEP

      384:DZoRF0XXUuJReQg0Tw67ADWBTgmldIogUD3GLgFmyaX/fVYcWJQCDmrinogRdBl:DZaF0HtTwuz9yu3KgwRX1nWJ1q+noI

    Score
    3/10
    behavioral7behavioral8

    • Target

      $PLUGINSDIR/KillProcDLL.dll

    • Size

      36KB

    • MD5

      1cc87d2b5a79b18f133b4f944e2f2f74

    • SHA1

      98e0ddb727c76e06be1668434d754e5b80a0c154

    • SHA256

      de1177a4bd1c56c3555f366d40b37d7dd9cb25e16c4973d0a4d22bf9a8af7aed

    • SHA512

      d8fee1c09fef9af4e1f38baaffa3a6d059713b14ecad900815c086cc22855644fcdeacd6bba31ea6e6925831e650f7b0d34e6dea4c57a978fb4f5bf0cd6d72a9

    • SSDEEP

      384:JLmJwO50x66T9JOpOUT38YZvml7xoKdyuwlx8xSiorppugBwUdJopS:JW50hJwwUTsXdPwxvtpDtdJo

    Score
    3/10
    behavioral10behavioral9

    • Target

      $PLUGINSDIR/StartMenu.dll

    • Size

      7KB

    • MD5

      5ce52c5c52c7ece604cb5b07faf234df

    • SHA1

      ab244b4a8caa29ecb24477d1cc1dd8484371176b

    • SHA256

      96ac4ef189260d5d6137c27c9470afbbde382f771fef040e9a6fa3f0ca2e4ecc

    • SHA512

      c42ec0d29350aa59cd783fdad542cd6dfcd983266726c1d45e7bdfcfa9a4302b2119b5081f987d967ec7a99b3b195717da3e839c9c9b8a34aeb38ca0e0d62262

    • SSDEEP

      96:cXEsZNrFQiAYLvx8RxjjL82Orp2YDDBKIakCT9KNotMQl3gJk:cXEsYYLvxcSDBxan9my3O

    Score
    3/10
    behavioral11behavioral12

    • Target

      $PLUGINSDIR/System.dll

    • Size

      11KB

    • MD5

      b9f430f71c7144d8ff4ab94be2785aa6

    • SHA1

      c5c1e153caff7ad1d221a9acc8bbb831f05ccb05

    • SHA256

      b496e81a74ce871236abcd096fb9a6b210b456bebaa7464fa844b3241e51a655

    • SHA512

      c7ce431b6a1493fd7d1fe1b1c823ad22b582c43c8eb2fb6a471c648dd9df9953277c89932c66afd598d43ea36f4a8602e84cd175115266943071cbc8ce204099

    • SSDEEP

      192:hClej3uzvJwqJMQKN4GbeWZksMI4ETWcEbcBZ8ep2Kra7yOG:hCm2HgN4GbeWmbI4Eybogia7yO

    Score
    3/10
    behavioral13behavioral14

    • Target

      $PLUGINSDIR/TvGetVersion.dll

    • Size

      52KB

    • MD5

      d14463f96f8289dae95ad702638e3ea1

    • SHA1

      34d75662ed204569bed75de62de0b39610821589

    • SHA256

      e26e34e9f8425857827acaa59131448c0abab0ae2e2f0cebccd5191c81b84c70

    • SHA512

      1a9e9896da43b8c575b554f4a33887cdb0692cdc031820b4f7bce92c282995237298e0d2a3352f329abcacb04449ec14675eec65c7a55478f972247f24d6eecf

    • SSDEEP

      768:gmSu//P7Lkm3Mf+vU1MoT4S52kGRcZsFOO8YQh/tEyTReYfnaoyciGSQ+5HVth:gmSu//P7LkIvHKkoYQh1EJhrth

    Score
    3/10
    behavioral15behavioral16

    • Target

      $PLUGINSDIR/nsExec.dll

    • Size

      6KB

    • MD5

      a272bc9b9df701ef76ed5faf08925b17

    • SHA1

      f2977303d12ba7af38dceb8e5e7ff1c15553211e

    • SHA256

      08b89132344dad1b0357ca0b442e9aaaff979e6a87b9603c19b86934f455285b

    • SHA512

      9ebb0c4b995309a40f1cee05967ef722972baa97b17194bb306fe7c01ea98c058d9485846c55e40601c17e7f2f73a8e5cd74cd9162a046fd4427dbfc7eb0501e

    • SSDEEP

      96:/6spqRy5AOEEQsh+WvDRH3spzQreUvhiT4uF3Telac1nIq4i:/Y0AOEMh+Wv9cZQKUvkTjlaB1nIqH

    Score
    3/10
    behavioral17behavioral18

    • Target

      $PLUGINSDIR/nsisFirewall.dll

    • Size

      8KB

    • MD5

      f5bf81a102de52a4add21b8a367e54e0

    • SHA1

      cf1e76ffe4a3ecd4dad453112afd33624f16751c

    • SHA256

      53be5716ad80945cb99681d5dbda60492f5dfb206fbfdb776b769b3eeb18d2c2

    • SHA512

      6e280a75f706474ad31b2ce770fa34f54cb598528fac4477c466200a608b79c0f9b84011545595d9ba94331ad08e2f51bd42de91f92379db27686a28ba351256

    • SSDEEP

      96:8SMPv+eLDUDp+weLv2lstU+0IgNB2Aa20kdArfOwJKbFrMiRsuHdRYL:wnxLDUwp6sgN2RDrzJMMmsuYL

    Score
    3/10
    behavioral19behavioral20

MITRE ATT&CK Enterprise v15

Tasks