Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

45a645897e...18.exe

windows7-x64

10

45a645897e...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    45a645897e79143b48a8492e0011bd79_JaffaCakes118

  • Size

    252KB

  • Sample

    240714-nrjrya1elg

  • MD5

    45a645897e79143b48a8492e0011bd79

  • SHA1

    132440b8c931d2faa2905bd4e347d71f019b62d8

  • SHA256

    59571aa78c5a5a125cf8bf9a18924c8224587878dd73b67e6d8e886a0e0af0bc

  • SHA512

    dec8348faf81d01990541d8da78412197e01d02f525bec7f77b15f76f53a639340a3fdb1440aa68a8e1194c47b8529ba2f5dbaccc75a9a642222d1fccf501a53

  • SSDEEP

    1536:ZjPMJ249icel/Z01/NBX4UDpegM3zwACUJGLq42GrElP2T/1oHd5RVQYnuDEHo+S:mX0e1FB/DpKjCLHvDEHo+l3bw

Score
10/10
evasiontrojan

Malware Config

Targets

    • Target

      45a645897e79143b48a8492e0011bd79_JaffaCakes118

    • Size

      252KB

    • MD5

      45a645897e79143b48a8492e0011bd79

    • SHA1

      132440b8c931d2faa2905bd4e347d71f019b62d8

    • SHA256

      59571aa78c5a5a125cf8bf9a18924c8224587878dd73b67e6d8e886a0e0af0bc

    • SHA512

      dec8348faf81d01990541d8da78412197e01d02f525bec7f77b15f76f53a639340a3fdb1440aa68a8e1194c47b8529ba2f5dbaccc75a9a642222d1fccf501a53

    • SSDEEP

      1536:ZjPMJ249icel/Z01/NBX4UDpegM3zwACUJGLq42GrElP2T/1oHd5RVQYnuDEHo+S:mX0e1FB/DpKjCLHvDEHo+l3bw

    Score
    10/10
    evasiontrojan

    • UAC bypass

      evasiontrojan

    • Windows security bypass

      evasiontrojan

    • Windows security modification

      evasiontrojan

    • Checks whether UAC is enabled

      evasiontrojan

    • Maps connected drives based on registry

      Disk information is often read in order to detect sandboxing environments.

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks