Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

3

46967b4a94...18.exe

windows7-x64

1

46967b4a94...18.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    46967b4a94be39ef1e5de697054f004b_JaffaCakes118

  • Size

    649KB

  • Sample

    240515-rrlhbadf49

  • MD5

    46967b4a94be39ef1e5de697054f004b

  • SHA1

    bf1337afb18d8b819c8ee4bd3b01f731989be413

  • SHA256

    23744945e3c2bee3d8c71955bf3000d283a5d979507e15d65a8bd4ac9568d267

  • SHA512

    2bf57e18ac70e845a2083b55ec95cebe9c57dc46d9a8ee28db223529f6bc4a7ce7ba9360ee4b8ae50ec11b5c6e2bd8a968c9a62add17c043ac9c976554834367

  • SSDEEP

    12288:Ykcor/aNZzE5wW2UapZbVlnMBJhNdqIs7JbRXU9M8j:5corCwiW2D7bV9sJ/ARxRXYM8j

Score
9/10
evasion

Malware Config

Targets

    • Target

      46967b4a94be39ef1e5de697054f004b_JaffaCakes118

    • Size

      649KB

    • MD5

      46967b4a94be39ef1e5de697054f004b

    • SHA1

      bf1337afb18d8b819c8ee4bd3b01f731989be413

    • SHA256

      23744945e3c2bee3d8c71955bf3000d283a5d979507e15d65a8bd4ac9568d267

    • SHA512

      2bf57e18ac70e845a2083b55ec95cebe9c57dc46d9a8ee28db223529f6bc4a7ce7ba9360ee4b8ae50ec11b5c6e2bd8a968c9a62add17c043ac9c976554834367

    • SSDEEP

      12288:Ykcor/aNZzE5wW2UapZbVlnMBJhNdqIs7JbRXU9M8j:5corCwiW2D7bV9sJ/ARxRXYM8j

    Score
    9/10
    evasion

    • Identifies VirtualBox via ACPI registry values (likely anti-VM)

      evasion

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Drops desktop.ini file(s)

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks