Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

7

2fc01d62bd...18.exe

windows7-x64

7

2fc01d62bd...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2fc01d62bdcef79b30c67143d7512b34_JaffaCakes118

  • Size

    228KB

  • Sample

    240709-k1q1tswcjm

  • MD5

    2fc01d62bdcef79b30c67143d7512b34

  • SHA1

    670be77ddf067abf1a94c8481718c77f2e18ba86

  • SHA256

    02acc6ee5ca1c54e2af8a787c5cf596139a982ffded76966d7430f2a35043340

  • SHA512

    e12c69090d95ae9bf64d88dbe3758248492eb6d770e3cc69f3c8b0ac7a51fda2fa1412175b536b3101c4ca44bdda14c6c52c2bf01410527d76c67303665ee447

  • SSDEEP

    6144:Q4Q9x2N2h74vSmC/eakYkJ9afR+9ge1LisQOcNeSWlowd4V:hQn+vSbkYkqfRNe1LiN/bWlpdk

Score
7/10
bootkitpersistenceupx

Malware Config

Targets

    • Target

      2fc01d62bdcef79b30c67143d7512b34_JaffaCakes118

    • Size

      228KB

    • MD5

      2fc01d62bdcef79b30c67143d7512b34

    • SHA1

      670be77ddf067abf1a94c8481718c77f2e18ba86

    • SHA256

      02acc6ee5ca1c54e2af8a787c5cf596139a982ffded76966d7430f2a35043340

    • SHA512

      e12c69090d95ae9bf64d88dbe3758248492eb6d770e3cc69f3c8b0ac7a51fda2fa1412175b536b3101c4ca44bdda14c6c52c2bf01410527d76c67303665ee447

    • SSDEEP

      6144:Q4Q9x2N2h74vSmC/eakYkJ9afR+9ge1LisQOcNeSWlowd4V:hQn+vSbkYkqfRNe1LiN/bWlpdk

    Score
    7/10
    bootkitpersistenceupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks