Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

2c206320a5...18.exe

windows7-x64

7

2c206320a5...18.exe

windows10-2004-x64

7

$PLUGINSDI...ad.dll

windows7-x64

1

$PLUGINSDI...ad.dll

windows10-2004-x64

1

$PLUGINSDI...in.dll

windows7-x64

3

$PLUGINSDI...in.dll

windows10-2004-x64

3

$PLUGINSDIR/dl.dll

windows7-x64

1

$PLUGINSDIR/dl.dll

windows10-2004-x64

1

$PLUGINSDI...vq.dll

windows7-x64

3

$PLUGINSDI...vq.dll

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2c206320a5de3be0e7400ab0bb114d14_JaffaCakes118

  • Size

    1.4MB

  • Sample

    240509-2yey8abg3s

  • MD5

    2c206320a5de3be0e7400ab0bb114d14

  • SHA1

    751b9195c556b57cf6f44676e58fd2465a5be9bc

  • SHA256

    d8e220f8221409c3d3943c555c4f8325b57427defbf832cfbe4c7417dc74f19f

  • SHA512

    9d56883eb412a58c5b08b98b8018844d838358800d7f7d40d847a8899ce36c7225fdd968ad6cc7539cbeb70337c79552ebb2851cc46039ff3d35b93f7c88d383

  • SSDEEP

    24576:wCHiC65hW2gR2T9WK5nmPhC8A9u2IZEUuQtk3TZKyhR3pYXyvi2Y:8W2gR2ThFmPA8A9u2ItuBsuVpuyk

Score
7/10

Malware Config

Targets

    • Target

      2c206320a5de3be0e7400ab0bb114d14_JaffaCakes118

    • Size

      1.4MB

    • MD5

      2c206320a5de3be0e7400ab0bb114d14

    • SHA1

      751b9195c556b57cf6f44676e58fd2465a5be9bc

    • SHA256

      d8e220f8221409c3d3943c555c4f8325b57427defbf832cfbe4c7417dc74f19f

    • SHA512

      9d56883eb412a58c5b08b98b8018844d838358800d7f7d40d847a8899ce36c7225fdd968ad6cc7539cbeb70337c79552ebb2851cc46039ff3d35b93f7c88d383

    • SSDEEP

      24576:wCHiC65hW2gR2T9WK5nmPhC8A9u2IZEUuQtk3TZKyhR3pYXyvi2Y:8W2gR2ThFmPA8A9u2ItuBsuVpuyk

    Score
    7/10

    • Loads dropped DLL

    behavioral1behavioral2

    • Target

      $PLUGINSDIR/BDMDownload.dll

    • Size

      158KB

    • MD5

      d184763cb4e62d531193978de7b82db2

    • SHA1

      f4824e6e58f50b1fd89396afa17d0f97d86895f7

    • SHA256

      63a233664064e22fd3260e4dc06293b8fa724e62071ad1cf8af9a4bb453e1dea

    • SHA512

      25bb657827c1c4ce410346e11e60fe954f62100731bd730405cba666d4eb7009dfd394053e2afabfd9981ea0eea5fa625f24805a1d4d24c7da44f6449eda7e1b

    • SSDEEP

      3072:NtmM/jSHRNnu+8ON7szLOkXcgpZD+cTxtjt8UWbzk:bvlZvTxQU1

    Score
    1/10
    behavioral3behavioral4

    • Target

      $PLUGINSDIR/BDMSkin.dll

    • Size

      1.3MB

    • MD5

      b540a866191f7fd20f5e6355bc2b094e

    • SHA1

      df01a0c011e88a1f860db41d474d3fe893f06082

    • SHA256

      ce3044e92a827fce76a75dbd817545506dcab76a5f4edac3c9cf37236a1eecb6

    • SHA512

      e65aa73a9e8118176f294edeb7a9dc3a71319b218a45de6073622b868bee2fab9d7b6f76577f846cc940b4b949ee0110fbb449df3d77c922464cf6ded1408331

    • SSDEEP

      24576:JLe//qOJqzo/K3vgexi4elHo7ttsmMTWyfx:Blzo0RXhvMTZ

    Score
    3/10
    behavioral5behavioral6

    • Target

      $PLUGINSDIR/dl.dll

    • Size

      1.9MB

    • MD5

      763b532d651f0ad5e135d9b57bf4fba4

    • SHA1

      23f1302f904a67a1fe0d48e11a435c2f36336196

    • SHA256

      50b3c45ede6fd2d77c4f040242b2174289767b18a3a084e7046133b05f93e173

    • SHA512

      a4ec0f5bfa30d3558935f4075a75aebf080ece324a550c573d8a424730693b030cd26b4862973e8da8937e610c287d64e96c2fd952b59324ed1822919a00737c

    • SSDEEP

      49152:asQTyFBNJLMNHH/5ubZheqUrmgg0UFPbTeR0qcBig:MEG3ubZhQmgg0UWu

    Score
    1/10
    behavioral7behavioral8

    • Target

      $PLUGINSDIR/tmp6rryvq.dll

    • Size

      640KB

    • MD5

      4c1c3bc37aa88abea14bfc98a2e4699d

    • SHA1

      e856cf8c20f940cd058c58c1a625f07e5242273d

    • SHA256

      1673edb7e00a6d7684dfa33f807287f61b41847ef740089642b544c7d9e7c1d5

    • SHA512

      24bf2b3f956386c164473deb254f726ba03096e200653a17d0649a0a754df4ad78d45e05a25d0470d082fab4a7485f11996f5401a91ed9440d652cf032ca55e2

    • SSDEEP

      6144:wnOTL//NUXldKcxonqGIzGo6L5buUaPOG/0W8/Wkgw+oUYMBaR1cBF+rP70jgs:iOTLtUecun/d14g+ly11LY7

    Score
    3/10
    behavioral10behavioral9

MITRE ATT&CK Enterprise v15

Tasks