Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

330f648a94...18.exe

windows7-x64

10

330f648a94...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    330f648a9459329c3f72f2ba3e3feedb_JaffaCakes118

  • Size

    272KB

  • Sample

    240710-dhw1ssvcnd

  • MD5

    330f648a9459329c3f72f2ba3e3feedb

  • SHA1

    ae90712aaa986273ff5a68ff124fb8329fdc447c

  • SHA256

    6a00898d7c7aff4604ae5aee80ff9efd2c7dff2da17ad9dda2d24092fa3c5fac

  • SHA512

    417448d23456046c3b78990a804e76cd93d73a2e78a04cb488dde6ad9706cd9d21d22cce03f1a2314cb8f512de475bf5e5b925b42e21b2f319249875c443c4a5

  • SSDEEP

    6144:wjFM2ymU8iHOADP0UfV3SHWPIxXZgO+VeR8RUq:VkUfJSj+R

Score
10/10
evasionpersistence

Malware Config

Targets

    • Target

      330f648a9459329c3f72f2ba3e3feedb_JaffaCakes118

    • Size

      272KB

    • MD5

      330f648a9459329c3f72f2ba3e3feedb

    • SHA1

      ae90712aaa986273ff5a68ff124fb8329fdc447c

    • SHA256

      6a00898d7c7aff4604ae5aee80ff9efd2c7dff2da17ad9dda2d24092fa3c5fac

    • SHA512

      417448d23456046c3b78990a804e76cd93d73a2e78a04cb488dde6ad9706cd9d21d22cce03f1a2314cb8f512de475bf5e5b925b42e21b2f319249875c443c4a5

    • SSDEEP

      6144:wjFM2ymU8iHOADP0UfV3SHWPIxXZgO+VeR8RUq:VkUfJSj+R

    Score
    10/10
    evasionpersistence

    • Modifies visiblity of hidden/system files in Explorer

      evasion

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks