Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

7

2cda586136...18.exe

windows7-x64

7

2cda586136...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2cda586136f8a627a6087dcbfafc6e6f_JaffaCakes118

  • Size

    3.1MB

  • Sample

    240708-sw5mesxhrf

  • MD5

    2cda586136f8a627a6087dcbfafc6e6f

  • SHA1

    f0fd185a614e0e8570f32206ffd885ef0060d4a4

  • SHA256

    5af5ad497c0b13118c5ce43ccab49e28dca7623ef501211975898221e238c4a3

  • SHA512

    8f7943dc705ed7a9ad2fa94cc6483bf45ac13117aa2545d2b06288dab119b915d405962838b3152426d17fa6550bdf2e018e6532f925b55643ead8334a16ae24

  • SSDEEP

    98304:E8R0S0Tk+u+6x3K3n75Ye3osBHFEq7gh32Em7:Ei7+KVK3Kmo6FEOghm

Score
7/10
vmprotect

Malware Config

Targets

    • Target

      2cda586136f8a627a6087dcbfafc6e6f_JaffaCakes118

    • Size

      3.1MB

    • MD5

      2cda586136f8a627a6087dcbfafc6e6f

    • SHA1

      f0fd185a614e0e8570f32206ffd885ef0060d4a4

    • SHA256

      5af5ad497c0b13118c5ce43ccab49e28dca7623ef501211975898221e238c4a3

    • SHA512

      8f7943dc705ed7a9ad2fa94cc6483bf45ac13117aa2545d2b06288dab119b915d405962838b3152426d17fa6550bdf2e018e6532f925b55643ead8334a16ae24

    • SSDEEP

      98304:E8R0S0Tk+u+6x3K3n75Ye3osBHFEq7gh32Em7:Ei7+KVK3Kmo6FEOghm

    Score
    7/10
    vmprotect

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

      vmprotect

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks