Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

7

2de75cc088...18.exe

windows7-x64

8

2de75cc088...18.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2de75cc088b661a67365ba10a493bab6_JaffaCakes118

  • Size

    12KB

  • Sample

    240708-1j6myssfna

  • MD5

    2de75cc088b661a67365ba10a493bab6

  • SHA1

    41726f01bd8919767f5e75cee57a045bc5de9e27

  • SHA256

    e24a4c0fa1d7ea583e70d0275b8cb465fab0f2f20073685201232f974625422c

  • SHA512

    e23ae88427b588571c4a0b406527836a0054f874860474d653d2b8b194883a136b4ee5ce107509f146f5d7a961a10e896e7e14caacbfac28c649c682ec1a18bc

  • SSDEEP

    192:h4RewhPGMhF/I2AkMDglt3oENEOI/mt+5ogdXaqX7BtqKyOoOx6evOo5hKDa/g:OrBF/I2ARgT3RNE9hha+FLaevO2xg

Score
8/10
persistenceprivilege_escalationupx

Malware Config

Targets

    • Target

      2de75cc088b661a67365ba10a493bab6_JaffaCakes118

    • Size

      12KB

    • MD5

      2de75cc088b661a67365ba10a493bab6

    • SHA1

      41726f01bd8919767f5e75cee57a045bc5de9e27

    • SHA256

      e24a4c0fa1d7ea583e70d0275b8cb465fab0f2f20073685201232f974625422c

    • SHA512

      e23ae88427b588571c4a0b406527836a0054f874860474d653d2b8b194883a136b4ee5ce107509f146f5d7a961a10e896e7e14caacbfac28c649c682ec1a18bc

    • SSDEEP

      192:h4RewhPGMhF/I2AkMDglt3oENEOI/mt+5ogdXaqX7BtqKyOoOx6evOo5hKDa/g:OrBF/I2ARgT3RNE9hha+FLaevO2xg

    Score
    8/10
    persistenceprivilege_escalationupx

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks