Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

1

9e2d69f766...18.exe

windows7-x64

7

9e2d69f766...18.exe

windows10-2004-x64

4

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9e2d69f76620872badd27be3168d2ac6_JaffaCakes118

  • Size

    323KB

  • Sample

    240611-pmrgnawgqg

  • MD5

    9e2d69f76620872badd27be3168d2ac6

  • SHA1

    4f394046d4c8f276bb1ed55ae7b491e1e99d3007

  • SHA256

    1132e6eddb8a036f440687d90c5a3e28f0c04e2d130be3ba5aea93f6702a80cb

  • SHA512

    3ff464f7f63782f412ccfd7d506950ec621f1e2241dea38ac0dde0a022e467f4368071c45c6debe7cde4cdf344fa504af972ca292ad2176f2d4c638d1a56ac29

  • SSDEEP

    3072:6AXPiWAyXzHTrmVTQIKLHOQmpg8sYvV4w6rsGzktr+xJhPB11zauwOEujSvWBNcn:6AXP0ECVcLui896rs981zpIvIOp+msfO

Score
7/10
discovery

Malware Config

Targets

    • Target

      9e2d69f76620872badd27be3168d2ac6_JaffaCakes118

    • Size

      323KB

    • MD5

      9e2d69f76620872badd27be3168d2ac6

    • SHA1

      4f394046d4c8f276bb1ed55ae7b491e1e99d3007

    • SHA256

      1132e6eddb8a036f440687d90c5a3e28f0c04e2d130be3ba5aea93f6702a80cb

    • SHA512

      3ff464f7f63782f412ccfd7d506950ec621f1e2241dea38ac0dde0a022e467f4368071c45c6debe7cde4cdf344fa504af972ca292ad2176f2d4c638d1a56ac29

    • SSDEEP

      3072:6AXPiWAyXzHTrmVTQIKLHOQmpg8sYvV4w6rsGzktr+xJhPB11zauwOEujSvWBNcn:6AXP0ECVcLui896rs981zpIvIOp+msfO

    Score
    7/10
    discovery

    • Executes dropped EXE

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Maps connected drives based on registry

      Disk information is often read in order to detect sandboxing environments.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks