Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

9ca789eb45...18.exe

windows7-x64

7

9ca789eb45...18.exe

windows10-2004-x64

7

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...ec.dll

windows7-x64

3

$PLUGINSDI...ec.dll

windows10-2004-x64

3

$PLUGINSDIR/nsURL.dll

windows7-x64

3

$PLUGINSDIR/nsURL.dll

windows10-2004-x64

3

$PLUGINSDI...nz.dll

windows7-x64

3

$PLUGINSDI...nz.dll

windows10-2004-x64

3

$PROGRAMFI...6_.exe

windows7-x64

3

$PROGRAMFI...6_.exe

windows10-2004-x64

3

$PROGRAMFI...32.dll

windows7-x64

1

$PROGRAMFI...32.dll

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9ca789eb45bba46293bb8c8b58d099a1_JaffaCakes118

  • Size

    237KB

  • Sample

    240611-cd5ayazhqk

  • MD5

    9ca789eb45bba46293bb8c8b58d099a1

  • SHA1

    161f12c9fb7345990d56b6656d8d7b7d622a3a3b

  • SHA256

    7f8ee260f5a6650c42992b658403c6db98fac6d3e552da6bef23a6a691e4bb9e

  • SHA512

    eeb248726b9b952e47a52636c47b8b7977139277569e090f96dc6c90e5b372ee5883ecb0b0dba2720e08cc797a4830e383b246f7b0e59ce811052d8505246795

  • SSDEEP

    6144:8e344i5MiJfhocE7dQdD3Gsbb9EqkMMiJfIocE7dUXCu:7+poSdasbhHQoECu

Score
7/10

Malware Config

Targets

    • Target

      9ca789eb45bba46293bb8c8b58d099a1_JaffaCakes118

    • Size

      237KB

    • MD5

      9ca789eb45bba46293bb8c8b58d099a1

    • SHA1

      161f12c9fb7345990d56b6656d8d7b7d622a3a3b

    • SHA256

      7f8ee260f5a6650c42992b658403c6db98fac6d3e552da6bef23a6a691e4bb9e

    • SHA512

      eeb248726b9b952e47a52636c47b8b7977139277569e090f96dc6c90e5b372ee5883ecb0b0dba2720e08cc797a4830e383b246f7b0e59ce811052d8505246795

    • SSDEEP

      6144:8e344i5MiJfhocE7dQdD3Gsbb9EqkMMiJfIocE7dUXCu:7+poSdasbhHQoECu

    Score
    7/10

    • Loads dropped DLL

    behavioral1behavioral2

    • Target

      $PLUGINSDIR/System.dll

    • Size

      11KB

    • MD5

      c17103ae9072a06da581dec998343fc1

    • SHA1

      b72148c6bdfaada8b8c3f950e610ee7cf1da1f8d

    • SHA256

      dc58d8ad81cacb0c1ed72e33bff8f23ea40b5252b5bb55d393a0903e6819ae2f

    • SHA512

      d32a71aaef18e993f28096d536e41c4d016850721b31171513ce28bbd805a54fd290b7c3e9d935f72e676a1acfb4f0dcc89d95040a0dd29f2b6975855c18986f

    • SSDEEP

      192:7DKnJZCv6VmbJQC+tFiUdK7ckD4gRXKQx+LQ2CSF:7ViJrtFRdbmXK8+PCw

    Score
    3/10
    behavioral3behavioral4

    • Target

      $PLUGINSDIR/nsExec.dll

    • Size

      6KB

    • MD5

      acc2b699edfea5bf5aae45aba3a41e96

    • SHA1

      d2accf4d494e43ceb2cff69abe4dd17147d29cc2

    • SHA256

      168a974eaa3f588d759db3f47c1a9fdc3494ba1fa1a73a84e5e3b2a4d58abd7e

    • SHA512

      e29ea10ada98c71a18273b04f44f385b120d4e8473e441ce5748cfa44a23648814f2656f429b85440157988c88de776c6ac008dc38bf09cbb746c230a46c69fe

    • SSDEEP

      96:M7GUb+YNfwgcr8zyKwZ5S4JxN8BS0ef9/3VI9d0qqyVgNk32E:eKgfwgcr8zylsB49Ud0qJVgNX

    Score
    3/10
    behavioral5behavioral6

    • Target

      $PLUGINSDIR/nsURL.dll

    • Size

      130KB

    • MD5

      8cfcad073ee407ed9d347e66ede2b0e5

    • SHA1

      8ff0e4acb5eaff7dcef517bbc06f5514ce037b3a

    • SHA256

      73be46ee304981b7e5f9ece3a0222b4c53717450b630a70c997d2d63bced9ac1

    • SHA512

      d86176791f0e5f7b047add20a7c9ce03ddc881819055cc6ae98d113707b89a19ca1f7637cf2a2cc6ffdaf794b673f13a6ac933212794e5ff6c32d28b18e360ca

    • SSDEEP

      1536:SgfY4mHSF6+WGqp38Dvy4GBG7Xr0suPLHqnmW9mz7xKz+ToncPZsWjcdmwyhkqM5:TJlpDD0e2r24xW+som/ldz7+a

    Score
    3/10
    behavioral7behavioral8

    • Target

      $PLUGINSDIR/nsisunz.dll

    • Size

      40KB

    • MD5

      5f13dbc378792f23e598079fc1e4422b

    • SHA1

      5813c05802f15930aa860b8363af2b58426c8adf

    • SHA256

      6e87ecb7f62039fbb6e7676422d1a5e75a32b90dde6865dcb68ee658ba8df61d

    • SHA512

      9270635a5294482f49e0292e26d45dd103b85fe27dc163d44531b095c5f9dbde6b904adaf1a888ba3c112a094380394713c796f5195b2566a20f00b42b6578e5

    • SSDEEP

      384:KExN66Yf2xL5Q4IsjuUjUZfqRDpImexpf88FwHxXvjX3hwlHt6oIfESxSHoOO8n9:O2x64GcVpI3xC8ynToIf1SIOhW4

    Score
    3/10
    behavioral10behavioral9

    • Target

      $PROGRAMFILES/$_120_/$PROGRAMFILES/$_120_/$_96_

    • Size

      33KB

    • MD5

      6251a317e8fda2cc9f635b51fa13147c

    • SHA1

      0c394b77fdfcab74f1e1cb7983b73372b135b95b

    • SHA256

      e5c39f5e9a07f25945013a59349e4378fce314e78624f6aa33345499c614c509

    • SHA512

      1ae392625d7de98d1034321693d11ff9585e819276e3028b90706f5df06880c2200fee6b1cc4b0ed78e947118f9b49740ea516ccea43e21f9648807da9de9431

    • SSDEEP

      768:WHJd0TpH2+bQ2dUWVX9Hfv1JMWmtLEJOyuBxG0D3mjfS3XJWJRn1C:WpgpHzb9dZVX9fHMvG0D3XJ4C

    Score
    3/10
    behavioral11behavioral12

    • Target

      $PROGRAMFILES/$_120_/Interop.Shell32.dll

    • Size

      48KB

    • MD5

      5d79b7eb271ff308f08b47e03ff7a756

    • SHA1

      74b63f41cca3e91fbf43b8fe28751159a1ad1030

    • SHA256

      2119b6c748aa725847c28d2ee7a6908e23018ef4fc79f21257e88492d6a5ce29

    • SHA512

      7150a42e383314dc70ee14eade0e1184d11d0e1133c24391ca18295151126a862f8ab452e3df098ec88662d2cd4c7731bb01cb933b74cb38c2c48943e12e6314

    • SSDEEP

      768:fexl81nX6ZxlvUAa7KoBv7epginbCe7AXjuw9tL0Duxj7tr+Br7FHy:fexl81nK34PJepgqcVz8y

    Score
    1/10
    behavioral13behavioral14

MITRE ATT&CK Enterprise v15

Tasks