Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

f4871b080f...18.exe

windows7-x64

7

f4871b080f...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f4871b080f9274da1274bb43709d130e_JaffaCakes118

  • Size

    448KB

  • Sample

    240416-23wsjagf2s

  • MD5

    f4871b080f9274da1274bb43709d130e

  • SHA1

    cca4af8b983e4786c3785a33c112871d00e5ecff

  • SHA256

    e6c083bc386c6543a06f0e6d2b0927076e7c0484ea959216b335d61a97e9b618

  • SHA512

    b8c4d47fb26a4c83f7c77ff0e3520c1e5caa1b26681129f19e2b242df38ab087c3bc0b1c6f97ccb88d7f1d9391c243bcd51afbbf7f58dc2ec75407f5a124f887

  • SSDEEP

    6144:EgZUzJg5m05lmVcNNij/BVfMe7yz6GVnwmkSY8lgbtjabm4BwY3tuvLmzMEGqFA7:EyUdg5XAjDfD7gwmou6Y9uT4LOEIFU2

Score
7/10
persistenceupx

Malware Config

Targets

    • Target

      f4871b080f9274da1274bb43709d130e_JaffaCakes118

    • Size

      448KB

    • MD5

      f4871b080f9274da1274bb43709d130e

    • SHA1

      cca4af8b983e4786c3785a33c112871d00e5ecff

    • SHA256

      e6c083bc386c6543a06f0e6d2b0927076e7c0484ea959216b335d61a97e9b618

    • SHA512

      b8c4d47fb26a4c83f7c77ff0e3520c1e5caa1b26681129f19e2b242df38ab087c3bc0b1c6f97ccb88d7f1d9391c243bcd51afbbf7f58dc2ec75407f5a124f887

    • SSDEEP

      6144:EgZUzJg5m05lmVcNNij/BVfMe7yz6GVnwmkSY8lgbtjabm4BwY3tuvLmzMEGqFA7:EyUdg5XAjDfD7gwmou6Y9uT4LOEIFU2

    Score
    7/10
    persistenceupx

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks