Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

1

017adf275b...kes118

ubuntu-18.04-amd64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    017adf275b98db7fee280b9c9d9aba97_JaffaCakes118

  • Size

    64KB

  • Sample

    240426-x1w83abc4z

  • MD5

    017adf275b98db7fee280b9c9d9aba97

  • SHA1

    675de2b9156227de294e37cc18a0e9c7296ad727

  • SHA256

    96b1a55731ca9222e1e16e00675920e582bf463a7f39718ea9a892a5efe7fe0e

  • SHA512

    dcfd60ce752b4c1b0f56d367691d8c941dec6b484ef1eadec3cf342de92687e4e1c79b7e1af3fa848b8ad6689b1e6a31c3500a82fe143ca2e5c5890557809032

  • SSDEEP

    768:SK1SaASLCOtGQf+D2K2Y4fPyJbPbQBwRnEHsPdIjqIu33kUqiQgYRQ3ClsI8N:j1Sa9V+GY4yWKRnEZjq6UYHG3Esr

Score
9/10
discoverylinux

Malware Config

Targets

    • Target

      017adf275b98db7fee280b9c9d9aba97_JaffaCakes118

    • Size

      64KB

    • MD5

      017adf275b98db7fee280b9c9d9aba97

    • SHA1

      675de2b9156227de294e37cc18a0e9c7296ad727

    • SHA256

      96b1a55731ca9222e1e16e00675920e582bf463a7f39718ea9a892a5efe7fe0e

    • SHA512

      dcfd60ce752b4c1b0f56d367691d8c941dec6b484ef1eadec3cf342de92687e4e1c79b7e1af3fa848b8ad6689b1e6a31c3500a82fe143ca2e5c5890557809032

    • SSDEEP

      768:SK1SaASLCOtGQf+D2K2Y4fPyJbPbQBwRnEHsPdIjqIu33kUqiQgYRQ3ClsI8N:j1Sa9V+GY4yWKRnEZjq6UYHG3Esr

    Score
    9/10
    discovery

    • Contacts a large (37867) amount of remote hosts

      This may indicate a network scan to discover remotely running services.

      discovery

    • Creates a large amount of network flows

      This may indicate a network scan to discover remotely running services.

      discovery

    • Reads system routing table

      Gets active network interfaces from /proc virtual filesystem.

    behavioral1

MITRE ATT&CK Enterprise v15

Tasks