Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

26e6607fd0...18.exe

windows7-x64

7

26e6607fd0...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    26e6607fd06113a8b339b087f524500c_JaffaCakes118

  • Size

    176KB

  • Sample

    240705-n86m2azhrg

  • MD5

    26e6607fd06113a8b339b087f524500c

  • SHA1

    27b7896750532a8a9c6685c71b2f41867504a53d

  • SHA256

    0e2cc0d61a8dce14e5fc9370f28df7d72f28fbd1d9d95e05c2b14e0500155a80

  • SHA512

    d24a47a6cea9161382eee02f8ad61291a5f5b7d9e562054262a093feaefa18f671ceba3bac7998725b5c15f321fd6bf8442507ec38fb734d666367d56ebe5fb2

  • SSDEEP

    3072:I/gPUZAjpDzFZeapdSbn4p+cKg91GAFWj2iQKGYV0JwVzNc7:njpNZXL+cF9YAF425KhVh

Score
7/10

Malware Config

Targets

    • Target

      26e6607fd06113a8b339b087f524500c_JaffaCakes118

    • Size

      176KB

    • MD5

      26e6607fd06113a8b339b087f524500c

    • SHA1

      27b7896750532a8a9c6685c71b2f41867504a53d

    • SHA256

      0e2cc0d61a8dce14e5fc9370f28df7d72f28fbd1d9d95e05c2b14e0500155a80

    • SHA512

      d24a47a6cea9161382eee02f8ad61291a5f5b7d9e562054262a093feaefa18f671ceba3bac7998725b5c15f321fd6bf8442507ec38fb734d666367d56ebe5fb2

    • SSDEEP

      3072:I/gPUZAjpDzFZeapdSbn4p+cKg91GAFWj2iQKGYV0JwVzNc7:njpNZXL+cF9YAF425KhVh

    Score
    7/10

    • Deletes itself

    • Executes dropped EXE

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Drops desktop.ini file(s)

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks