Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

1

flux-b13!-...kB.exe

windows7-x64

7

flux-b13!-...kB.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    3c297d97bb9a9258e1060e18af923ed7_JaffaCakes118

  • Size

    865KB

  • Sample

    240513-wtvafshc39

  • MD5

    3c297d97bb9a9258e1060e18af923ed7

  • SHA1

    218bc0b0bb077c6ec3e756700abd3276e33be205

  • SHA256

    9da45d2cf0dee5d3d0bbdc08eb555085eb42e8205bfdb7c36ad96664a4b41b25

  • SHA512

    d3e3cbd86d1dfd94420585a46375b15be627261daa918fc1845ad82264f40217e73634b0691c34f3f28dd64cf9e037b05efcbfe9e53d9747c9ad7c941df55fec

  • SSDEEP

    24576:lfmBMFgDdvynsMIv6zfDhJUoQHifC7T3WDNyp+DY:lfmB3JvV/vStJ2C63WZypp

Score
7/10
evasion

Malware Config

Targets

    • Target

      flux-b13!-2018!-hack-by-juuzze_dTskB.exe

    • Size

      1.2MB

    • MD5

      ea1490fa4877e9d8086db6399de05ccc

    • SHA1

      ef0b188c761d5225f7c1fa2bb55287d2264fc412

    • SHA256

      d7d9189205c9e3db4b4db0a38f9050f18af5ec2ba378fa08a5475638cd4b1145

    • SHA512

      5b92dd7ead8429ea68501527f7a0362f973b7493f4014b4dc4a2d54c65fd920116928cd9cbb8618d2fa972ae77a36786f63fed5111a0e79137ed7f10be58bfe2

    • SSDEEP

      24576:Vfm/32weFgod1+nsMIvekBOoNQCDCbCZmmc/l7gWJ07gWJj:VfmI/vekcoNQqZ58R+9

    Score
    7/10
    evasion

    • Deletes itself

    • Identifies Wine through registry keys

      Wine is a compatibility layer capable of running Windows applications, which can be used as sandboxing environment.

      evasion
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks