Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

COPY180921...DF.exe

windows7-x64

7

COPY180921...DF.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a11aa25b9ce40579c0546c071e5593fd_JaffaCakes118

  • Size

    1.0MB

  • Sample

    240612-sj7k9azbne

  • MD5

    a11aa25b9ce40579c0546c071e5593fd

  • SHA1

    a6d544a03523f8d5c2ac9bfa2245e7992c656cbc

  • SHA256

    b24383ce4aab8beb5478d11371c9871e3bc310677bd4dd279c69f15a3af6f01e

  • SHA512

    7b3c12dd8563dd4c5129dea5b4e507279b329c28a0c1c60fd64ad531d8b7ecb644266fde1349efbe22ca43459e951c0e1ab36147de6ccbf25e99139ee99ba198

  • SSDEEP

    24576:GbveAjjxIDGIFqZgxD2u8Bvqt2a56VFRK72Z41lcPNmGZ:Gb2AjjxIAZuYBvq5QFo7ksQNmG

Score
7/10
persistence

Malware Config

Targets

    • Target

      COPY180921348283848482293942938492929440293482828484-PlDF.exe

    • Size

      1.6MB

    • MD5

      f642324ae68a28add963391319efbf95

    • SHA1

      eaab9e1b9a17dc8f8ea06df13422d851c44ec931

    • SHA256

      f01dbb3e35f1231d4bf6fcdabfe7184950c78f9e8f61b9ba6163a16083e0e1da

    • SHA512

      4037d00a181b651aaa5dd0e2a94e1994475d9e3f490807a4ffaa0c8d3083036db831abeba245bbaac02923cb790607747f5d38d8e3a33ca01e5af882f45ec321

    • SSDEEP

      24576:vFLWY02cjr5yKg7VwmhXt6W6LfJWyvnD19CtSrBFmr7eH:R4XghZhH6z5DGtY

    Score
    7/10
    persistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks