Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

435e570880...18.exe

windows7-x64

7

435e570880...18.exe

windows10-2004-x64

7

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$_2_/$R0.dll

windows7-x64

6

$_2_/$R0.dll

windows10-2004-x64

6

$_2_/$R2/N...4_.exe

windows7-x64

1

$_2_/$R2/N...4_.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    435e570880d6aca6d294205fc08e7695_JaffaCakes118

  • Size

    121KB

  • Sample

    240713-z4t9zsxekl

  • MD5

    435e570880d6aca6d294205fc08e7695

  • SHA1

    a985ba7f09de7371f6c151194ced63807b13b6e3

  • SHA256

    75df84ce51fba958aabc1d460c40406083753dfe8a66d7b4b8fb4c65675db1ad

  • SHA512

    86d684d6eb73a1a2aa8540f47c7f682b01d1f289ba54d2f9ab62c04061177202617befde62848db37cd90eac2d837f69345a84292d34838e331c5b8c4d74a293

  • SSDEEP

    3072:1KQXtg/sDHmJ945Q41S/HdrJckuzIsJjs0Oh8bFgG1jP:1NpuESfdr+ssV0OpjP

Score
7/10
adwarestealer

Malware Config

Targets

    • Target

      435e570880d6aca6d294205fc08e7695_JaffaCakes118

    • Size

      121KB

    • MD5

      435e570880d6aca6d294205fc08e7695

    • SHA1

      a985ba7f09de7371f6c151194ced63807b13b6e3

    • SHA256

      75df84ce51fba958aabc1d460c40406083753dfe8a66d7b4b8fb4c65675db1ad

    • SHA512

      86d684d6eb73a1a2aa8540f47c7f682b01d1f289ba54d2f9ab62c04061177202617befde62848db37cd90eac2d837f69345a84292d34838e331c5b8c4d74a293

    • SSDEEP

      3072:1KQXtg/sDHmJ945Q41S/HdrJckuzIsJjs0Oh8bFgG1jP:1NpuESfdr+ssV0OpjP

    Score
    7/10
    adwarestealer

    • Loads dropped DLL

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

      stealeradware
    behavioral1behavioral2

    • Target

      $PLUGINSDIR/System.dll

    • Size

      10KB

    • MD5

      bf01b2d04e8fad306ba2f364cfc4edfa

    • SHA1

      58f42b45ca9fc1818c4498ecd8bac088d20f2b18

    • SHA256

      d3f9c99e0c1c9acd81a1b33bc3dbd305140def90d10485c253cf1d455f0dc903

    • SHA512

      30ca1663d659c5efac7fed3d1aaba81c47d5d5fda77f30f021124c882b858732e17f917bfd0aa3ee7b269fad86e75b1b9388d8f916e7a4e2c9961669f2c772e7

    • SSDEEP

      192:aO6dJA/ruAFEiUdWWE6hE5RYUdJfbub1angMO:vKAFERdlxhGRYUzqZan

    Score
    3/10
    behavioral3behavioral4

    • Target

      $_2_/$R0

    • Size

      156KB

    • MD5

      42748366d1edb36ffc9156932e52cf13

    • SHA1

      1c2862acc20bb1d530340ae4c26d7b6337f5c07c

    • SHA256

      06d3bd3d155d93792a41eaf999bf2d45b9de1cb093622dafbfc7b634d8105244

    • SHA512

      ac7fdaa8bfa348ed62cce11109d3ad0d9a77494be5ad8202df98f0881c9ebe5bccd904839527b635e583b038440cff25a179abfbf741bdf4980de58c76d5f8c0

    • SSDEEP

      3072:xeB8sTOuWfZk8aOEM9edz9CloYOmojbKWpb13j0:M8hGRSedzCO/r

    Score
    6/10
    adwarestealer

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

      stealeradware
    behavioral5behavioral6

    • Target

      $_2_/$R2/NSIS.Library.RegTool.v2.$_4_.exe

    • Size

      5KB

    • MD5

      0d1cca1c19703fc33b0bac7ea413bbba

    • SHA1

      79c0021638bec535d8c1394aa2deb9f580d65692

    • SHA256

      db6885decc954136455b54731b8b8937396d45c261134eda8ef58e3144650457

    • SHA512

      0f56db4c4757e4c7dd7bb9c4e2951ea76f2accae73d3b60f2a9a164fba358ec29c4f07c1fae3f4614ff4310c3a8f9b64b47fc7593512f419d733821eedb27218

    • SSDEEP

      96:YFw199EdjXxf7FsS7bVs2ddqB4DDZH/6:919CZfsS7bVbddqaHZH/

    Score
    1/10
    behavioral7behavioral8

MITRE ATT&CK Enterprise v15

Tasks