Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

2c9f7208b7...18.exe

windows7-x64

7

2c9f7208b7...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2c9f7208b74155db9f9d05376ba5e8f9_JaffaCakes118

  • Size

    188KB

  • Sample

    240708-rbae4svdlb

  • MD5

    2c9f7208b74155db9f9d05376ba5e8f9

  • SHA1

    bf2129483f05afe0cee4e2d85b6de7292162ee1e

  • SHA256

    23cfe3d50bd573a0040268f12df96c8fab6e3dfe820db43506db4c14d8bdb4a6

  • SHA512

    37dc18729531c668fdbd93f639ac4a5908672839992d9ab5ef080bfe29d2a3fd4810ae9a3a3b7920da78ff559477566b70688f393cebdde1a1f291194db7ca8f

  • SSDEEP

    3072:c9WVqr4KRwc0L/sLAnG7pGTST7TZwDRqN5FGpL0y8SKczV3vn+UJ:+Gc0LULMScTGPZznGH8Mx3/f

Score
7/10

Malware Config

Targets

    • Target

      2c9f7208b74155db9f9d05376ba5e8f9_JaffaCakes118

    • Size

      188KB

    • MD5

      2c9f7208b74155db9f9d05376ba5e8f9

    • SHA1

      bf2129483f05afe0cee4e2d85b6de7292162ee1e

    • SHA256

      23cfe3d50bd573a0040268f12df96c8fab6e3dfe820db43506db4c14d8bdb4a6

    • SHA512

      37dc18729531c668fdbd93f639ac4a5908672839992d9ab5ef080bfe29d2a3fd4810ae9a3a3b7920da78ff559477566b70688f393cebdde1a1f291194db7ca8f

    • SSDEEP

      3072:c9WVqr4KRwc0L/sLAnG7pGTST7TZwDRqN5FGpL0y8SKczV3vn+UJ:+Gc0LULMScTGPZznGH8Mx3/f

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks