Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

01c9a70fb7...18.exe

windows7-x64

7

01c9a70fb7...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    01c9a70fb7e17f9d215f2346ac4055b5_JaffaCakes118

  • Size

    188KB

  • Sample

    240620-b6m2pasakh

  • MD5

    01c9a70fb7e17f9d215f2346ac4055b5

  • SHA1

    e975065193cdcb04cabd256dfbe631a033d772ac

  • SHA256

    84924cc8e6a943ea4a7769379ad67178b4878809fc28a5552682ac6eea0e6c7d

  • SHA512

    b4bc41789fcab4f88bfae56df8a4f49942c9ad867d53449e147f26fee4cdbd2f38b0d2b9d13280532a411c19d1d091763bfad809a0a925e5bee6db5d7919e498

  • SSDEEP

    3072:U9m0jofzTJK5fICGdNEi1w7Z/WpEy5kym65jVA13usrF2y31uXzFaC:cmTTJsyNEhA5cMARusrAsuXzoC

Score
7/10
persistence

Malware Config

Targets

    • Target

      01c9a70fb7e17f9d215f2346ac4055b5_JaffaCakes118

    • Size

      188KB

    • MD5

      01c9a70fb7e17f9d215f2346ac4055b5

    • SHA1

      e975065193cdcb04cabd256dfbe631a033d772ac

    • SHA256

      84924cc8e6a943ea4a7769379ad67178b4878809fc28a5552682ac6eea0e6c7d

    • SHA512

      b4bc41789fcab4f88bfae56df8a4f49942c9ad867d53449e147f26fee4cdbd2f38b0d2b9d13280532a411c19d1d091763bfad809a0a925e5bee6db5d7919e498

    • SSDEEP

      3072:U9m0jofzTJK5fICGdNEi1w7Z/WpEy5kym65jVA13usrF2y31uXzFaC:cmTTJsyNEhA5cMARusrAsuXzoC

    Score
    7/10
    persistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks