Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

7

48c7df9908...18.dll

windows7-x64

7

48c7df9908...18.dll

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    48c7df99089edd824b427a9b1d00c017_JaffaCakes118

  • Size

    312KB

  • Sample

    240715-h6e5eavbrp

  • MD5

    48c7df99089edd824b427a9b1d00c017

  • SHA1

    a5a3c03e6ca29b39f5881f824cb1978379527d68

  • SHA256

    2e1b657ed676d209fe27cf9c03f4cb040f9d2112f7e798b9c9aea2e5b37f1c69

  • SHA512

    aa64bb938ea9d3f7bb3e3dad14697bac7df6e559007e8925f4bb8d018e1e077d03fa9970197761b0d4725f686e10f5a863f3ccf8fdbf9aa95aa2f10194e8f43d

  • SSDEEP

    6144:xIeRrNHAYKIdFchQ6NnMdohq9HwCVRn+Q/ymBRNHQk:xzAYKwqNNMdohq9HwHkwk

Score
7/10
vmprotect

Malware Config

Targets

    • Target

      48c7df99089edd824b427a9b1d00c017_JaffaCakes118

    • Size

      312KB

    • MD5

      48c7df99089edd824b427a9b1d00c017

    • SHA1

      a5a3c03e6ca29b39f5881f824cb1978379527d68

    • SHA256

      2e1b657ed676d209fe27cf9c03f4cb040f9d2112f7e798b9c9aea2e5b37f1c69

    • SHA512

      aa64bb938ea9d3f7bb3e3dad14697bac7df6e559007e8925f4bb8d018e1e077d03fa9970197761b0d4725f686e10f5a863f3ccf8fdbf9aa95aa2f10194e8f43d

    • SSDEEP

      6144:xIeRrNHAYKIdFchQ6NnMdohq9HwCVRn+Q/ymBRNHQk:xzAYKwqNNMdohq9HwHkwk

    Score
    7/10
    vmprotect

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

      vmprotect
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks