Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

289af9ba7b...18.exe

windows7-x64

10

289af9ba7b...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    289af9ba7bc8838783f43eb478429464_JaffaCakes118

  • Size

    409KB

  • Sample

    240706-sjqbzasbln

  • MD5

    289af9ba7bc8838783f43eb478429464

  • SHA1

    abf831debeac646da9fc7a3ce05a108d552284be

  • SHA256

    00c86e33547653b9940f1065f3b23cad2f01323615862241370340b1a8787f2e

  • SHA512

    93513a4d10372de69046a9d9063f610f1287ea21677d6f76bfe9057bce65a7dc5a02b6ff2082ea3b8c7e7add183ac760cceb1ac5a27cd1396e5832cbaac82e70

  • SSDEEP

    12288:zQ+mznKsAvW13q86j7e4UYtqOthJNlYKG7L:zl21F65TlDI

Score
10/10
modiloadertrojan

Malware Config

Targets

    • Target

      289af9ba7bc8838783f43eb478429464_JaffaCakes118

    • Size

      409KB

    • MD5

      289af9ba7bc8838783f43eb478429464

    • SHA1

      abf831debeac646da9fc7a3ce05a108d552284be

    • SHA256

      00c86e33547653b9940f1065f3b23cad2f01323615862241370340b1a8787f2e

    • SHA512

      93513a4d10372de69046a9d9063f610f1287ea21677d6f76bfe9057bce65a7dc5a02b6ff2082ea3b8c7e7add183ac760cceb1ac5a27cd1396e5832cbaac82e70

    • SSDEEP

      12288:zQ+mznKsAvW13q86j7e4UYtqOthJNlYKG7L:zl21F65TlDI

    Score
    10/10
    modiloadertrojan

    • ModiLoader, DBatLoader

      ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.

      trojanmodiloader

    • ModiLoader Second Stage

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks