Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

1

2bae5e869b...18.exe

windows7-x64

8

2bae5e869b...18.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2bae5e869b9a0f7b4db0894a66eaec9c_JaffaCakes118

  • Size

    731KB

  • Sample

    240708-kklfea1dmr

  • MD5

    2bae5e869b9a0f7b4db0894a66eaec9c

  • SHA1

    941ab6f9a681c7d96e41524558eaff6fb81959c3

  • SHA256

    89069d21f61a81d8832f5d649e389e0cd3e0c84236d09ed9f3ffcccc8741f746

  • SHA512

    d6d39483cf3cbaaea7e19bd3d3ee7c49b316043786fa6a8fde564ee6025f018b553c54aa789f651ba20f8fbf5b84309e6bd281eae1f5b434ef9a457b24d0f1dc

  • SSDEEP

    12288:Jaingtd/9iCpVEZxzraxdUdpmOFmjnDgGeIttwoPR5pWZhAIRXHYnrmp:JaigD/ArravUdsOwnlFttwYQRXHYrmp

Score
8/10
evasionpersistenceprivilege_escalation

Malware Config

Targets

    • Target

      2bae5e869b9a0f7b4db0894a66eaec9c_JaffaCakes118

    • Size

      731KB

    • MD5

      2bae5e869b9a0f7b4db0894a66eaec9c

    • SHA1

      941ab6f9a681c7d96e41524558eaff6fb81959c3

    • SHA256

      89069d21f61a81d8832f5d649e389e0cd3e0c84236d09ed9f3ffcccc8741f746

    • SHA512

      d6d39483cf3cbaaea7e19bd3d3ee7c49b316043786fa6a8fde564ee6025f018b553c54aa789f651ba20f8fbf5b84309e6bd281eae1f5b434ef9a457b24d0f1dc

    • SSDEEP

      12288:Jaingtd/9iCpVEZxzraxdUdpmOFmjnDgGeIttwoPR5pWZhAIRXHYnrmp:JaigD/ArravUdsOwnlFttwYQRXHYrmp

    Score
    8/10
    evasionpersistenceprivilege_escalation

    • Modifies Windows Firewall

      evasion

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks