Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

1c3ace0b11...18.exe

windows7-x64

10

1c3ace0b11...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    1c3ace0b119de10f6ca58cb6cc5c140f_JaffaCakes118

  • Size

    96KB

  • Sample

    240701-x6xf1svfnf

  • MD5

    1c3ace0b119de10f6ca58cb6cc5c140f

  • SHA1

    a54266d4f447f02988b0ad287c6c27d7fdadfe71

  • SHA256

    38eb8291e5f7340c97495985d73434d949350b17d815091bf40a7838b7b171bb

  • SHA512

    ec65e5bf2b805e137c7d0c7f6068bfe334adfb815860fc2a77f46ad8e733bb30bb2527296d4c5ff3122351673ed4dab2866266d837213a5d665681cc19a8cede

  • SSDEEP

    1536:PxZEg5239tyVQO8P8ychNwjj3RJNEo/knRzdnynE7RldNEP8lijOeDNIjni:PTE/3elychkzR3Ek65RldqDCni

Score
10/10
evasionpersistence

Malware Config

Targets

    • Target

      1c3ace0b119de10f6ca58cb6cc5c140f_JaffaCakes118

    • Size

      96KB

    • MD5

      1c3ace0b119de10f6ca58cb6cc5c140f

    • SHA1

      a54266d4f447f02988b0ad287c6c27d7fdadfe71

    • SHA256

      38eb8291e5f7340c97495985d73434d949350b17d815091bf40a7838b7b171bb

    • SHA512

      ec65e5bf2b805e137c7d0c7f6068bfe334adfb815860fc2a77f46ad8e733bb30bb2527296d4c5ff3122351673ed4dab2866266d837213a5d665681cc19a8cede

    • SSDEEP

      1536:PxZEg5239tyVQO8P8ychNwjj3RJNEo/knRzdnynE7RldNEP8lijOeDNIjni:PTE/3elychkzR3Ek65RldqDCni

    Score
    10/10
    evasionpersistence

    • Modifies visiblity of hidden/system files in Explorer

      evasion

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks