Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

1

306ae17675...18.exe

windows7-x64

8

306ae17675...18.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    306ae1767544f8472250405ad0a2661d_JaffaCakes118

  • Size

    728KB

  • Sample

    240709-pxgp7svblr

  • MD5

    306ae1767544f8472250405ad0a2661d

  • SHA1

    e94091b70c4641039f000c9a84bfd02055a69adb

  • SHA256

    bd68d0a20951e0c32ee5e259c698e9d072438eaaf945cc732ead83e4c73dc95e

  • SHA512

    e5d39ff53128cca4b07abf13480b6426e8193361d3c61c608e9d4b1012e78805258ba87bd6a1bffff87dc29883b9a856fce06bd937ec43512a1f6b045c25026f

  • SSDEEP

    12288:lEcF8D2K53tGcAOYYsLN2Z8bbXc/meGDgGeItoEc9GspWZhASRXHYnrm/:lEc8H5fMLN2Kb7crGlFtov9GsqRXHYr4

Score
8/10
evasionpersistenceprivilege_escalation

Malware Config

Targets

    • Target

      306ae1767544f8472250405ad0a2661d_JaffaCakes118

    • Size

      728KB

    • MD5

      306ae1767544f8472250405ad0a2661d

    • SHA1

      e94091b70c4641039f000c9a84bfd02055a69adb

    • SHA256

      bd68d0a20951e0c32ee5e259c698e9d072438eaaf945cc732ead83e4c73dc95e

    • SHA512

      e5d39ff53128cca4b07abf13480b6426e8193361d3c61c608e9d4b1012e78805258ba87bd6a1bffff87dc29883b9a856fce06bd937ec43512a1f6b045c25026f

    • SSDEEP

      12288:lEcF8D2K53tGcAOYYsLN2Z8bbXc/meGDgGeItoEc9GspWZhASRXHYnrm/:lEc8H5fMLN2Kb7crGlFtov9GsqRXHYr4

    Score
    8/10
    evasionpersistenceprivilege_escalation

    • Modifies Windows Firewall

      evasion

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks