Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    41865ee286f001bfb01c3879da716c1e_JaffaCakes118

  • Size

    1017KB

  • Sample

    240713-nt6pgs1fld

  • MD5

    41865ee286f001bfb01c3879da716c1e

  • SHA1

    aeebbaecbeca46bd2ca4bdc42a8f6b0cf2dc1e48

  • SHA256

    9a1f606c05a9b758bf3372097a6fe0a8f2543d375162e64b94a0c870cfe974f7

  • SHA512

    ccfb76c8f8f046c39127c0dedc42e6c41b785ea7fc970a6ad6661ec7217e32e9372296c24986b3166928abaa8c1b9f539f829ac69f70781e3187dbc2f6d42096

  • SSDEEP

    24576:B97k84WP23716PXDtF5j14xrRVvu06Q5i3LtenW:joWSsPD75h8v2Rr5

Score
7/10
upx

Malware Config

Targets

    • Target

      Office 2010 Activator.exe

    • Size

      1.0MB

    • MD5

      797429180c8c307b2a5d5ecf7ac77c8b

    • SHA1

      4e87f19b4718c107734d07ff407ad2db06400766

    • SHA256

      3dfd975557ba1d76d501320157b2ce9ddf09fd5e945787c85301168e51bc750d

    • SHA512

      ace9095a8d8925aa47a10892f01cb24a307949db6c4750164dd652ae4d31cd723c03816d8fe194e04f7b3359ba5c4a5af02ad0ca6b758cd5d1b33c4eba24cd49

    • SSDEEP

      12288:mhkqqrSo4VXMuc9cdQqiZIVgQ1HeH0e1a9E0PU08NTjreLnYwaU087HdS99Naqfc:mhcghM8BR6a9E0PFQ/U0jscq1nNR4

    Score
    7/10
    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks