Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

215057ac49...18.exe

windows7-x64

7

215057ac49...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    215057ac490b0c2564becb8482330d67_JaffaCakes118

  • Size

    2.5MB

  • Sample

    240507-xr2gesdd87

  • MD5

    215057ac490b0c2564becb8482330d67

  • SHA1

    e2fa1ce5ad9e2ba104ae9a2403455b465e7b28c1

  • SHA256

    dcd5e8958f299309d859ac081d0a64cc34a12d609185889ebbdda833b1319b5f

  • SHA512

    4e73d36d6a2461943a324a591dfd3e9ee2c43972ec0e0eb6e6bd75becbecd0858a738e8a51dc6eef152accab31301991b1562929e5cd5b8c0288bf89a5be4c8b

  • SSDEEP

    49152:nY9MWFHW4vzYvqM0VS0/C2FGthbTzErAbCS:sDF2OzYvyVt/4hbTzQAbt

Score
7/10
persistence

Malware Config

Targets

    • Target

      215057ac490b0c2564becb8482330d67_JaffaCakes118

    • Size

      2.5MB

    • MD5

      215057ac490b0c2564becb8482330d67

    • SHA1

      e2fa1ce5ad9e2ba104ae9a2403455b465e7b28c1

    • SHA256

      dcd5e8958f299309d859ac081d0a64cc34a12d609185889ebbdda833b1319b5f

    • SHA512

      4e73d36d6a2461943a324a591dfd3e9ee2c43972ec0e0eb6e6bd75becbecd0858a738e8a51dc6eef152accab31301991b1562929e5cd5b8c0288bf89a5be4c8b

    • SSDEEP

      49152:nY9MWFHW4vzYvqM0VS0/C2FGthbTzErAbCS:sDF2OzYvyVt/4hbTzQAbt

    Score
    7/10
    persistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks