Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

3bbcefa313...18.exe

windows7-x64

10

3bbcefa313...18.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    3bbcefa31389862aa36e13e7ba5d662d_JaffaCakes118

  • Size

    185KB

  • Sample

    240712-dfjbxsyaqh

  • MD5

    3bbcefa31389862aa36e13e7ba5d662d

  • SHA1

    a4dce14fcfe23b6a78f2bd3a89af889ce74a2b6f

  • SHA256

    43d282bc1c75d5191e08c6ffef6a7169a1fff3b9abbd05b6e21fff93cdb0d86d

  • SHA512

    fcb4639283211c7d55db977ca037a86103a0f7b125cad2fa43579644e72d916249f4e2d384880af7ded04f814e84e2ac21910dba115972bb73c8ad5d489a110b

  • SSDEEP

    3072:G8AkSbDZfP1C+q1MXWWgwuEHxLDHP14DGM8nM2MbbwAYQdQY1xVvCBcxx7K:G8/MZfPPmWhH9iDnYKbYiX1XNxx7

Score
10/10
persistencespywarestealerupx

Malware Config

Targets

    • Target

      3bbcefa31389862aa36e13e7ba5d662d_JaffaCakes118

    • Size

      185KB

    • MD5

      3bbcefa31389862aa36e13e7ba5d662d

    • SHA1

      a4dce14fcfe23b6a78f2bd3a89af889ce74a2b6f

    • SHA256

      43d282bc1c75d5191e08c6ffef6a7169a1fff3b9abbd05b6e21fff93cdb0d86d

    • SHA512

      fcb4639283211c7d55db977ca037a86103a0f7b125cad2fa43579644e72d916249f4e2d384880af7ded04f814e84e2ac21910dba115972bb73c8ad5d489a110b

    • SSDEEP

      3072:G8AkSbDZfP1C+q1MXWWgwuEHxLDHP14DGM8nM2MbbwAYQdQY1xVvCBcxx7K:G8/MZfPPmWhH9iDnYKbYiX1XNxx7

    Score
    10/10
    persistencespywarestealerupx

    • Modifies WinLogon for persistence

      persistence

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks