Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

445e8d5e7b...18.exe

windows7-x64

8

445e8d5e7b...18.exe

windows10-2004-x64

8

$TEMP/Ff8wfHZYn0.dll

windows7-x64

7

$TEMP/Ff8wfHZYn0.dll

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    445e8d5e7bc9e7d73b1189c2567ebd41_JaffaCakes118

  • Size

    108KB

  • Sample

    240714-fe8xaszbqg

  • MD5

    445e8d5e7bc9e7d73b1189c2567ebd41

  • SHA1

    3dd1b3fd60befc25cc6358c4bacfb9aaadb1a6a6

  • SHA256

    79cf60976b460063d4eb8f7e83039aebf18dba16c50a787d191e72ecfefbddfe

  • SHA512

    8e4c292cfe20bee8e842a5d00985800773a546171c321d8c06ac9b6740a14ca08dc6a1a6540d65bd17fc17be2bf7a2babe00a07a4cf7e684970c15dffc1662a9

  • SSDEEP

    3072:IgXdZt9P6D3XJbCifHK1tjsITcqbfH7TtEz:Ie344ifHK1JxcEH7G

Score
8/10

Malware Config

Targets

    • Target

      445e8d5e7bc9e7d73b1189c2567ebd41_JaffaCakes118

    • Size

      108KB

    • MD5

      445e8d5e7bc9e7d73b1189c2567ebd41

    • SHA1

      3dd1b3fd60befc25cc6358c4bacfb9aaadb1a6a6

    • SHA256

      79cf60976b460063d4eb8f7e83039aebf18dba16c50a787d191e72ecfefbddfe

    • SHA512

      8e4c292cfe20bee8e842a5d00985800773a546171c321d8c06ac9b6740a14ca08dc6a1a6540d65bd17fc17be2bf7a2babe00a07a4cf7e684970c15dffc1662a9

    • SSDEEP

      3072:IgXdZt9P6D3XJbCifHK1tjsITcqbfH7TtEz:Ie344ifHK1JxcEH7G

    Score
    8/10

    • Blocklisted process makes network request

    • Loads dropped DLL

    behavioral1behavioral2

    • Target

      $TEMP/Ff8wfHZYn0.dll

    • Size

      89KB

    • MD5

      7a06cb307f802c120609c0b3c1e963a9

    • SHA1

      2bda4b275422ea6138b12efaeefcb9e279f1de95

    • SHA256

      292340cb04147497e7828986c55765e24bc863ab8e3066b317d78032beab984a

    • SHA512

      a38c7cfb714859ddca000390bae3c4dc5a4cf88db2e974168bf1270b0740568630ce2afd63cb6b663c7df9296a97d2c0dbc0968b2eaaab74487cd179876752a6

    • SSDEEP

      1536:zglskiJV33LX+dJ52NZmihyR6cu4fiTUyrUpgWjAal+faohb:QoJ3KdJAbG6cu4OrUpgEAi+fZb

    Score
    7/10

    • Deletes itself

    behavioral3behavioral4

MITRE ATT&CK Enterprise v15

Tasks