Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

0110fe7860...18.exe

windows7-x64

10

0110fe7860...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0110fe7860b981c3e826c9624eacb961_JaffaCakes118

  • Size

    104KB

  • Sample

    240619-24pevawcpd

  • MD5

    0110fe7860b981c3e826c9624eacb961

  • SHA1

    e79101a73d96e7490d19bd53d413db105d1485d5

  • SHA256

    baba35a7af159e5027c5eb4b6a8b97a0d4a0923d4564e7d9b4c0553acc6f1a01

  • SHA512

    2478aba536cf899a0945e425e178717731a4c801e12bc513becc7d672980505edda169651a2a6da0534e82d0ef8c70a93154a8eca22ad1e4c1a2493a930467f4

  • SSDEEP

    1536:VK4IDz3Onpgkiu3uPP1K6x9uGB+2LG4h5crgqebMdUHhizIgp2zy9qhTLaNIjnZD:HgC/udO+ICYbzIgp2mqpaCnHR

Score
10/10
evasionpersistence

Malware Config

Targets

    • Target

      0110fe7860b981c3e826c9624eacb961_JaffaCakes118

    • Size

      104KB

    • MD5

      0110fe7860b981c3e826c9624eacb961

    • SHA1

      e79101a73d96e7490d19bd53d413db105d1485d5

    • SHA256

      baba35a7af159e5027c5eb4b6a8b97a0d4a0923d4564e7d9b4c0553acc6f1a01

    • SHA512

      2478aba536cf899a0945e425e178717731a4c801e12bc513becc7d672980505edda169651a2a6da0534e82d0ef8c70a93154a8eca22ad1e4c1a2493a930467f4

    • SSDEEP

      1536:VK4IDz3Onpgkiu3uPP1K6x9uGB+2LG4h5crgqebMdUHhizIgp2zy9qhTLaNIjnZD:HgC/udO+ICYbzIgp2mqpaCnHR

    Score
    10/10
    evasionpersistence

    • Modifies visiblity of hidden/system files in Explorer

      evasion

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks