Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

151a9a7f07...18.exe

windows7-x64

7

151a9a7f07...18.exe

windows10-2004-x64

7

$PLUGINSDI...ns.dll

windows7-x64

3

$PLUGINSDI...ns.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

NP264PLAY.dll

windows7-x64

3

NP264PLAY.dll

windows10-2004-x64

3

NPDVRNET.dll

windows7-x64

1

NPDVRNET.dll

windows10-2004-x64

1

NPLANGUAGE.dll

windows7-x64

1

NPLANGUAGE.dll

windows10-2004-x64

1

npDvr.dll

windows7-x64

1

npDvr.dll

windows10-2004-x64

1

uninst.exe

windows7-x64

7

uninst.exe

windows10-2004-x64

7

$PLUGINSDI...LL.dll

windows7-x64

3

$PLUGINSDI...LL.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    151a9a7f07c64f2e476f3cd751093ebb_JaffaCakes118

  • Size

    803KB

  • Sample

    240627-hzekas1bjl

  • MD5

    151a9a7f07c64f2e476f3cd751093ebb

  • SHA1

    d978f2864f0e8af5865188979d9390941f38e46b

  • SHA256

    05f4df533dce0752fa82547bf93d1b4b7db6ce942e24e86e50ba4c7d76af3052

  • SHA512

    402b4a2ef52f145d9422b80af7e5e495606328ea25642f3ce93f7d2e72e7e01508494c05d62af5ebdb3ed7ad935cfb563e418257ee66226fd07f2bee4779c0e7

  • SSDEEP

    24576:kAd0aqpXnlFGXVpB07vvQtM6+gLYiTpgaF:kDPAFjqnEr+gLY58

Score
7/10

Malware Config

Targets

    • Target

      151a9a7f07c64f2e476f3cd751093ebb_JaffaCakes118

    • Size

      803KB

    • MD5

      151a9a7f07c64f2e476f3cd751093ebb

    • SHA1

      d978f2864f0e8af5865188979d9390941f38e46b

    • SHA256

      05f4df533dce0752fa82547bf93d1b4b7db6ce942e24e86e50ba4c7d76af3052

    • SHA512

      402b4a2ef52f145d9422b80af7e5e495606328ea25642f3ce93f7d2e72e7e01508494c05d62af5ebdb3ed7ad935cfb563e418257ee66226fd07f2bee4779c0e7

    • SSDEEP

      24576:kAd0aqpXnlFGXVpB07vvQtM6+gLYiTpgaF:kDPAFjqnEr+gLY58

    Score
    7/10

    • Loads dropped DLL

    behavioral1behavioral2

    • Target

      $PLUGINSDIR/InstallOptions.dll

    • Size

      14KB

    • MD5

      0dc0cc7a6d9db685bf05a7e5f3ea4781

    • SHA1

      5d8b6268eeec9d8d904bc9d988a4b588b392213f

    • SHA256

      8e287326f1cdd5ef2dcd7a72537c68cbe4299ceb1f820707c5820f3aa6d8206c

    • SHA512

      814dd17ebb434f4a3356f716c783ab7f569f9ee34ce5274fa50392526925f044798f8006198ac7afe3d1c2ca83a2ca8c472ca53fec5f12bbfbbe0707abacd6b0

    • SSDEEP

      192:n6d+dHXLHQOPiY53uiUdigyU+WsPdc/A1A+2jPK72dwF7dBEnbok:n6UdHXcIiY535zBt2jP+BEnbo

    Score
    3/10
    behavioral3behavioral4

    • Target

      $PLUGINSDIR/System.dll

    • Size

      11KB

    • MD5

      00a0194c20ee912257df53bfe258ee4a

    • SHA1

      d7b4e319bc5119024690dc8230b9cc919b1b86b2

    • SHA256

      dc4da2ccadb11099076926b02764b2b44ad8f97cd32337421a4cc21a3f5448f3

    • SHA512

      3b38a2c17996c3b77ebf7b858a6c37415615e756792132878d8eddbd13cb06710b7da0e8b58104768f8e475fc93e8b44b3b1ab6f70ddf52edee111aaf5ef5667

    • SSDEEP

      192:7DKnJZCv6VmbJQC+tFiUdK7ckD4gRXKQx+LQ2CSF:7ViJrtFRdbmXK8+PCw

    Score
    3/10
    behavioral5behavioral6

    • Target

      NP264PLAY.dll

    • Size

      545KB

    • MD5

      adaad7b7a6d977c4bdd1874e0bca14b4

    • SHA1

      bec546074e7a50efb5d52443031c198323353a83

    • SHA256

      87539af7b4636e53a7e11415e2a5c947c831c6a8215cdff409f9f180f91ac10e

    • SHA512

      7c9c55d914aa5ccea8481b95c143358a7486022cce152591a61c714190ae0daca74eb3483e7569ec213b1e7a3fb34dfe278823923541c21a8af493e442727cec

    • SSDEEP

      12288:j87y6pXLFC3qHjrugxNzIDi6pL3hE8zkXM7xRgY:qg3qHjrugxNIDi6pLtzkX2V

    Score
    3/10
    behavioral7behavioral8

    • Target

      NPDVRNET.dll

    • Size

      573KB

    • MD5

      8dfa307263bc48d5daea1519f57ae74a

    • SHA1

      bd412f97be8f6328ac0b48408bc9326b2946bf33

    • SHA256

      009a2e87aa3ab9c65c379f3622a4cc09d3bff1e100267c5c8f0a632d430bfbf5

    • SHA512

      4a39e01ea4306ded395fc42dc9d8c286e03e062456f7328f4ea1def8680c096538c57f550bae0bc7a493b67785f69b4de6236ea2741fca66a940422b6bc13bb7

    • SSDEEP

      12288:dKGOA55LjkQnI3Lyb5gxNBpDi6pL3hE8hLG67FhmwrqR:nnmLyb5gxrpDi6pLthLGoaR

    Score
    1/10
    behavioral10behavioral9

    • Target

      NPLANGUAGE.dll

    • Size

      244KB

    • MD5

      143a8f0525c97e69bb07125943dabfd3

    • SHA1

      88600140196c8fd02d1c12ba829196723ed57b4c

    • SHA256

      b4fffe42456eb1f66a6b0ba2279fa4588f101812df8b4787c9a3771da6dba3b4

    • SHA512

      fab280618c1e98b525f60ad4c6bb8f6391ec090bab734781b77d20edf4a1a7c19408c8a413e88baeb23a2a868f9bd825d95f0df7aef66e85e70a6b186dacdf22

    • SSDEEP

      3072:XSkD7znCjYoomzI1aZ3/ceFRV+pG/P0Cac+M1JkO8GJQ7k+Xgso4:XzD3MYoomzwaZzFRopW0Rc+MrktG+k3E

    Score
    1/10
    behavioral11behavioral12

    • Target

      npDvr.dll

    • Size

      3.3MB

    • MD5

      89967d4fcff2290d437acb365bb08824

    • SHA1

      90c8d98e9ee32f0662cba4b92be47d7de09b3dc5

    • SHA256

      99bb3dbf320649fa9fabc070dadec8ea39ddf9ff5187e09cea1831fa47aa3687

    • SHA512

      233f92994fca4ed55ca424cfd1fcfe1be3b339065b5b44a2fa6b11fe8a12edf8df58194334ac6fae2ccabad4711cc5c5e014c7967ee8443a8b93ee08cfa93920

    • SSDEEP

      24576:XBm+JYs3zbO2CYG0jNBXYGQdX2ngGBAs++A42494k4RRk4k44Vk9Kk4k44+k9f44:01s3zJPG0plYGQU++r8

    Score
    1/10
    behavioral13behavioral14

    • Target

      uninst.exe

    • Size

      56KB

    • MD5

      6fd056c631d17162bcf60b139d02f029

    • SHA1

      2f64bd3f622dd2bb132d2d84e74b491625422cdb

    • SHA256

      bff24e298f16bcf2495735aea16bd0525908450ab97f4ef2cebf24234b8e4a9b

    • SHA512

      1f0c63064c6ef6947bee456a9b5e85cf1dcef6559be1a7042a851af0b8acbde7a47bdc7ec1cc86d39e9c5ab4811bd820fcd067eb0475fb777ff93a1e47f1f0ab

    • SSDEEP

      1536:T3cpyORJLuB4P4AJJ8bTiFqnD1QxNcmhh8:T3c1fP4AJJ8bTimuxNcm4

    Score
    7/10

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral15behavioral16

    • Target

      $PLUGINSDIR/LangDLL.dll

    • Size

      5KB

    • MD5

      a401e590877ef6c928d2a97c66157094

    • SHA1

      75e24799cf67e789fadcc8b7fddefc72fdc4cd61

    • SHA256

      2a7f33ef64d666a42827c4dc377806ad97bc233819197adf9696aed5be5efac0

    • SHA512

      6093415cd090e69cdcb52b5d381d0a8b3e9e5479dac96be641e0071f1add26403b27a453febd8ccfd16393dc1caa03404a369c768a580781aba3068415ee993f

    • SSDEEP

      48:iV6sAvmNC6iMPUptxEZK65x/AmvycNSmwVsOYJyvrpXptp/JvR0Joof5d2:2V11GED5ZTvycNSmwVsTJuftpZR0Ld2

    Score
    3/10
    behavioral17behavioral18

    • Target

      $PLUGINSDIR/System.dll

    • Size

      11KB

    • MD5

      00a0194c20ee912257df53bfe258ee4a

    • SHA1

      d7b4e319bc5119024690dc8230b9cc919b1b86b2

    • SHA256

      dc4da2ccadb11099076926b02764b2b44ad8f97cd32337421a4cc21a3f5448f3

    • SHA512

      3b38a2c17996c3b77ebf7b858a6c37415615e756792132878d8eddbd13cb06710b7da0e8b58104768f8e475fc93e8b44b3b1ab6f70ddf52edee111aaf5ef5667

    • SSDEEP

      192:7DKnJZCv6VmbJQC+tFiUdK7ckD4gRXKQx+LQ2CSF:7ViJrtFRdbmXK8+PCw

    Score
    3/10
    behavioral19behavioral20

MITRE ATT&CK Enterprise v15

Tasks