Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    3785bf5aaf0d569feafcb95524065310_JaffaCakes118

  • Size

    2.3MB

  • Sample

    240711-dxnmzawfrp

  • MD5

    3785bf5aaf0d569feafcb95524065310

  • SHA1

    73b44de602508ed824a303823bf8038c591bd2d5

  • SHA256

    f68b0a4144bccde0de22748573b63944731399f7dfd177cfcc879948ae67aefd

  • SHA512

    218d1471043f078ec6bf45493aa7b14e2c0cfac7d698eb94d400f46d5b8dd763a49d767382c4f73667d8b6ea5a6647728ad2f9b060f12a51519476924358b79f

  • SSDEEP

    49152:C8ze6dKC1muTGm4woezLyXRbvG+w8+zeeUDM:1hKC1m8AwogLWg8+AM

Score
7/10
upx

Malware Config

Targets

    • Target

      3785bf5aaf0d569feafcb95524065310_JaffaCakes118

    • Size

      2.3MB

    • MD5

      3785bf5aaf0d569feafcb95524065310

    • SHA1

      73b44de602508ed824a303823bf8038c591bd2d5

    • SHA256

      f68b0a4144bccde0de22748573b63944731399f7dfd177cfcc879948ae67aefd

    • SHA512

      218d1471043f078ec6bf45493aa7b14e2c0cfac7d698eb94d400f46d5b8dd763a49d767382c4f73667d8b6ea5a6647728ad2f9b060f12a51519476924358b79f

    • SSDEEP

      49152:C8ze6dKC1muTGm4woezLyXRbvG+w8+zeeUDM:1hKC1m8AwogLWg8+AM

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks