Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

406330f4ab...18.exe

windows7-x64

8

406330f4ab...18.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    406330f4abd0aff45ebc657b5b37560c_JaffaCakes118

  • Size

    68KB

  • Sample

    240713-f9expszenc

  • MD5

    406330f4abd0aff45ebc657b5b37560c

  • SHA1

    7b38374a0bd219475158941d004dc055a44fd28c

  • SHA256

    44f53e2ca552f49ce5803a4139e09957c14422cfbc7e6ee5df445e16e4b2c4ce

  • SHA512

    36c7541442d8cd902a9e775b58b43cab90132f04a1067a9b5ae94ec7b11b9a1fef20bca709237a79bb22c460da90118605eae592dcb08d610d9b436d311193cc

  • SSDEEP

    1536:cj+x2UHc9nMXoML9atF9mV78oe1jDzeDCrqo/11s:bpaTQaw8ACr11s

Score
8/10
evasionexecutionpersistencetrojan

Malware Config

Targets

    • Target

      406330f4abd0aff45ebc657b5b37560c_JaffaCakes118

    • Size

      68KB

    • MD5

      406330f4abd0aff45ebc657b5b37560c

    • SHA1

      7b38374a0bd219475158941d004dc055a44fd28c

    • SHA256

      44f53e2ca552f49ce5803a4139e09957c14422cfbc7e6ee5df445e16e4b2c4ce

    • SHA512

      36c7541442d8cd902a9e775b58b43cab90132f04a1067a9b5ae94ec7b11b9a1fef20bca709237a79bb22c460da90118605eae592dcb08d610d9b436d311193cc

    • SSDEEP

      1536:cj+x2UHc9nMXoML9atF9mV78oe1jDzeDCrqo/11s:bpaTQaw8ACr11s

    Score
    8/10
    evasionexecutionpersistencetrojan

    • Creates new service(s)

      persistenceexecution

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Checks whether UAC is enabled

      evasiontrojan
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks