Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

286094cfaa...18.exe

windows7-x64

8

286094cfaa...18.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    286094cfaaca44ec9db1e60f4fce1988_JaffaCakes118

  • Size

    47KB

  • Sample

    240706-nhrq7axgln

  • MD5

    286094cfaaca44ec9db1e60f4fce1988

  • SHA1

    64ca1a4cb8d74780821a7762c515ec8487563d99

  • SHA256

    0358faf087cad9fd6ecf99491130c0fd1f699c3793a62d7ebfdfcacee60922e9

  • SHA512

    5b87b98b3121866bfe5948772ef39b89f66f5907168496d98beb9c98ddff4c3aed199c71a3a477877f11ee7b25a12e9b3ec69e6e033262c3b0a69a377e441a3e

  • SSDEEP

    768:ut2SmxfGgix9rKevJjrr/qT/u9/1g2bCo2KPYJ/ukJV9HNFjNE2D8Lb/Ot72B2S:o2Deg5m/qbKXeo2AsugV9tFJE2gLbWkl

Score
8/10

Malware Config

Targets

    • Target

      286094cfaaca44ec9db1e60f4fce1988_JaffaCakes118

    • Size

      47KB

    • MD5

      286094cfaaca44ec9db1e60f4fce1988

    • SHA1

      64ca1a4cb8d74780821a7762c515ec8487563d99

    • SHA256

      0358faf087cad9fd6ecf99491130c0fd1f699c3793a62d7ebfdfcacee60922e9

    • SHA512

      5b87b98b3121866bfe5948772ef39b89f66f5907168496d98beb9c98ddff4c3aed199c71a3a477877f11ee7b25a12e9b3ec69e6e033262c3b0a69a377e441a3e

    • SSDEEP

      768:ut2SmxfGgix9rKevJjrr/qT/u9/1g2bCo2KPYJ/ukJV9HNFjNE2D8Lb/Ot72B2S:o2Deg5m/qbKXeo2AsugV9tFJE2gLbWkl

    Score
    8/10

    • Drops file in Drivers directory

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks