Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

1

41c46a91be...18.exe

windows7-x64

8

41c46a91be...18.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    41c46a91be0109dc8bcf5dfc7ab920a9_JaffaCakes118

  • Size

    728KB

  • Sample

    240713-p72hcs1gnr

  • MD5

    41c46a91be0109dc8bcf5dfc7ab920a9

  • SHA1

    6a7b415f56ecd6b7ff8df5ed676b9916a3f36395

  • SHA256

    0f67e183a4469dd46540ae8fd1a696e2873575e490f2d7e848004964a0ff1493

  • SHA512

    a9ebb3f2ff7a2288e52666cef08db0f2da0da20ed7f2716e666dfd5c6ef0ccb60e368974ed576e3ec7d8f8556258f18884077b0f3d37c6caba67d3aac4060168

  • SSDEEP

    12288:lEcF8D2K53tGcAOYYsLN2Z8bbXD/meGDgGeItoEc9GspWZhASRXHYnrmu:lEc8H5fMLN2Kb7DrGlFtov9GsqRXHYrV

Score
8/10
evasionpersistenceprivilege_escalation

Malware Config

Targets

    • Target

      41c46a91be0109dc8bcf5dfc7ab920a9_JaffaCakes118

    • Size

      728KB

    • MD5

      41c46a91be0109dc8bcf5dfc7ab920a9

    • SHA1

      6a7b415f56ecd6b7ff8df5ed676b9916a3f36395

    • SHA256

      0f67e183a4469dd46540ae8fd1a696e2873575e490f2d7e848004964a0ff1493

    • SHA512

      a9ebb3f2ff7a2288e52666cef08db0f2da0da20ed7f2716e666dfd5c6ef0ccb60e368974ed576e3ec7d8f8556258f18884077b0f3d37c6caba67d3aac4060168

    • SSDEEP

      12288:lEcF8D2K53tGcAOYYsLN2Z8bbXD/meGDgGeItoEc9GspWZhASRXHYnrmu:lEc8H5fMLN2Kb7DrGlFtov9GsqRXHYrV

    Score
    8/10
    evasionpersistenceprivilege_escalation

    • Modifies Windows Firewall

      evasion

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks