Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

2e6d7f6edd...18.exe

windows7-x64

7

2e6d7f6edd...18.exe

windows10-2004-x64

7

$PLUGINSDI...ll.dll

windows7-x64

3

$PLUGINSDI...ll.dll

windows10-2004-x64

3

$PLUGINSDI...nu.dll

windows7-x64

3

$PLUGINSDI...nu.dll

windows10-2004-x64

3

$TEMP/vidxcore.dll

windows7-x64

1

$TEMP/vidxcore.dll

windows10-2004-x64

1

Uninstall.exe

windows7-x64

7

Uninstall.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2e6d7f6edddd23b9cbcb658c0858423b_JaffaCakes118

  • Size

    321KB

  • Sample

    240709-a6w4xszfja

  • MD5

    2e6d7f6edddd23b9cbcb658c0858423b

  • SHA1

    e0d876179a45943dc6f5bcec68f89ad96fdfea1d

  • SHA256

    6d6611463a02ae95421da86ea2be11fbeb260fddfdedb20be9561616ff33ced5

  • SHA512

    44497cbb7b0c2b6bbb448b5ed4ddff8960c08156458f5e0c2b5ef84ec9b1ebad48bf0632c1860d8c0f62fd7b94ab2431dc940ae7126cc7dd981abac1df070d8a

  • SSDEEP

    6144:gXUApieRR7pV97XvJH5cXlGMTVI8xulY0OqtDXj:BA0k7zZcVGWxuxOe

Score
7/10

Malware Config

Targets

    • Target

      2e6d7f6edddd23b9cbcb658c0858423b_JaffaCakes118

    • Size

      321KB

    • MD5

      2e6d7f6edddd23b9cbcb658c0858423b

    • SHA1

      e0d876179a45943dc6f5bcec68f89ad96fdfea1d

    • SHA256

      6d6611463a02ae95421da86ea2be11fbeb260fddfdedb20be9561616ff33ced5

    • SHA512

      44497cbb7b0c2b6bbb448b5ed4ddff8960c08156458f5e0c2b5ef84ec9b1ebad48bf0632c1860d8c0f62fd7b94ab2431dc940ae7126cc7dd981abac1df070d8a

    • SSDEEP

      6144:gXUApieRR7pV97XvJH5cXlGMTVI8xulY0OqtDXj:BA0k7zZcVGWxuxOe

    Score
    7/10

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

    • Target

      $PLUGINSDIR/DcryptDll.dll

    • Size

      10KB

    • MD5

      69dc2ed40717e5a0dfa3feaa902f448e

    • SHA1

      07a6a0b6028a92e0c822cfe9b119aa1e81b28a79

    • SHA256

      73e8489b06789803dcab0f4bcae4281f1477ec652f80714c3b78671f73cfefad

    • SHA512

      f41e457466fcc979864829861bf421ad2589ec6b5afc81d19424f7af285ce1fb7ce25cc4067e53cd379621b5b8098882210e4535a4d53555b7816edcc2186a3c

    • SSDEEP

      192:ytTlNqjCZv12CDkFhrF5+ykYF8IwWzS3+1ZxIujmMAm:MTlEWZEjF5/yIwp3gIuj

    Score
    3/10
    behavioral3behavioral4

    • Target

      $PLUGINSDIR/StartMenu.dll

    • Size

      7KB

    • MD5

      8262fbc2a172ff04146e7587649d7091

    • SHA1

      628be3fede2a79d4b321b12f979711caf77e8a7e

    • SHA256

      ac53840d019b746ab5dabaa40d7720c9a4487c861b155926454bf8b10bd0963d

    • SHA512

      8e11f1f1811a424b1ae5ab8e064d5313adc118ee7607f6a6f9b9976647ca6c91496133d5575d4737386a1485f39cf6fd074dbfd619807f42fe148a640186f639

    • SSDEEP

      96:Z+rBC0x22epxPEvC4FkWE+in1/FMvsCGRfRFqCB5tXGhEl5VN:Z+FepxPE1r8/FtmCDtWg5v

    Score
    3/10
    behavioral5behavioral6

    • Target

      $TEMP/vidxcore.dll

    • Size

      556KB

    • MD5

      f0394f22ec1aebe4fc58dabf8165b65d

    • SHA1

      336c8ce70bc6684299ea79409935ac0bd8e6204f

    • SHA256

      0c569c72443dc1e6f17f5a137abd6443d7523a56da69581a29a10c2c869a5b04

    • SHA512

      26b434e68ae2703d3005b82732983648f8b38cb2cfd865cee099e97bc4c5b0cb918f88e76d2a70204bb780bb9048901d436c76011f73465585394d4283e25f25

    • SSDEEP

      12288:SQoaC6oaC4kLyb/q0sGqV7xZy+X4BOoZbTbKh64YSYf1UcRjDr+TLqF9lscGQKcB:SGkLyb/q0sGqV7xZyJOoZbTbKh6PSYfP

    Score
    1/10
    behavioral7behavioral8

    • Target

      Uninstall.exe

    • Size

      49KB

    • MD5

      5bfaaf0f67c1e620e6cb41fa9c72e6be

    • SHA1

      33bb6199bc40db42f961ffbd1fcbf1ebb8082c9f

    • SHA256

      a64a14895601ec3ea0f8f67db828e0f08ab9614ae4bd03a9b017f9f87eca6d4a

    • SHA512

      817f2538949e2bef3bcd728e3c409d026f27b970da2c1e3be00209032ce38bce8cf2c1add549d6a1a732a0f67e46facec8eaf656a025820d6528ecf265b91e1f

    • SSDEEP

      768:8/UpAHiGjRQ1kkjH918xnyzOp7OssT1pF/O71mJ/Xgd2iZQAm6kRRS+NoJRnEp4c:gUeHiWRgkkjH8nyWmJfgdLeAyN/p4JWV

    Score
    7/10

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral10behavioral9

MITRE ATT&CK Enterprise v15

Tasks