Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

854d06e29f...18.exe

windows7-x64

7

854d06e29f...18.exe

windows10-2004-x64

7

$PLUGINSDI...LL.dll

windows7-x64

3

$PLUGINSDI...LL.dll

windows10-2004-x64

3

$PLUGINSDI...wp.dll

windows7-x64

3

$PLUGINSDI...wp.dll

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    854d06e29faceaedb3a26195d921c163_JaffaCakes118

  • Size

    644KB

  • Sample

    240530-3lqqmafd62

  • MD5

    854d06e29faceaedb3a26195d921c163

  • SHA1

    e66c8c7c53f7e5a8d204c74f85d5bda134dc1519

  • SHA256

    21ab9e6bfc63c6058a2efc0cda1d996caab0de41d6ceda874e0e24b10e94b451

  • SHA512

    2706bb0aaa06c87a2fb941fd8d7a1990ac28424993c623be14bd641bd9ed94f4ebaa39bd3c5a80752139f8e37fa732e6da1a565b81c5ea6982559f77d7725aa2

  • SSDEEP

    12288:wyCSKiKTKjVcbxu7RKBmxF3KBLl0M6V6dXwJNGZtXBW5IYHUfc8vy4ht:wzHiwKZmu77jIXBZtyIYZ86Q

Score
7/10

Malware Config

Targets

    • Target

      854d06e29faceaedb3a26195d921c163_JaffaCakes118

    • Size

      644KB

    • MD5

      854d06e29faceaedb3a26195d921c163

    • SHA1

      e66c8c7c53f7e5a8d204c74f85d5bda134dc1519

    • SHA256

      21ab9e6bfc63c6058a2efc0cda1d996caab0de41d6ceda874e0e24b10e94b451

    • SHA512

      2706bb0aaa06c87a2fb941fd8d7a1990ac28424993c623be14bd641bd9ed94f4ebaa39bd3c5a80752139f8e37fa732e6da1a565b81c5ea6982559f77d7725aa2

    • SSDEEP

      12288:wyCSKiKTKjVcbxu7RKBmxF3KBLl0M6V6dXwJNGZtXBW5IYHUfc8vy4ht:wzHiwKZmu77jIXBZtyIYZ86Q

    Score
    7/10

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

    • Target

      $PLUGINSDIR/ZipDLL.dll

    • Size

      163KB

    • MD5

      2dc35ddcabcb2b24919b9afae4ec3091

    • SHA1

      9eeed33c3abc656353a7ebd1c66af38cccadd939

    • SHA256

      6bbeb39747f1526752980d4dbec2fe2c7347f3cc983a79c92561b92fe472e7a1

    • SHA512

      0ccac336924f684da1f73db2dd230a0c932c5b4115ae1fa0e708b9db5e39d2a07dc54dac8d95881a42069cbb2c2886e880cdad715deda83c0de38757a0f6a901

    • SSDEEP

      3072:8CkSJJ30k1pn2T4ISnUGN+E8KnCOxA17jxLmRtWHyPDQFllOdJiSg:tkSJy+c30UxbKnA1hLKWSVdk

    Score
    3/10
    behavioral3behavioral4

    • Target

      $PLUGINSDIR/evcqdwp.dll

    • Size

      166KB

    • MD5

      9f0a2b99a21e9f74ff5301683015eee5

    • SHA1

      f737ccb077c227124e54736107fb120d257429ac

    • SHA256

      4ddaf119fa946dd4c30d5e0a8a189fc52a2871dd930c35d09e9d2a03a0969a56

    • SHA512

      ae657b93deef13b624498c4339e257c84c511b726c85275b35dddd635fd7ad884e81bc31545a7a64fe8ed615eac4ba44cd314e071b976097ce2b4488bf4f8ad8

    • SSDEEP

      3072:GTh2gtEEADqaQs/SvvUhstM1dPmcNM+8q9szYTab:Yh2gWEA3AHUVdPmzaub

    Score
    3/10
    behavioral5behavioral6

MITRE ATT&CK Enterprise v15

Tasks