Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

3

5a7c04cc29...18.exe

windows7-x64

9

5a7c04cc29...18.exe

windows10-2004-x64

9

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5a7c04cc29de43a27029280485d6393c_JaffaCakes118

  • Size

    1.6MB

  • Sample

    240719-e7jx7ssgpp

  • MD5

    5a7c04cc29de43a27029280485d6393c

  • SHA1

    9f6dfe5c9bf2e88d40f628d46464be6d8c92e2bf

  • SHA256

    c49ecf6d13ec92f69ca864760d81bfd5f5200dbe3c0932c0c51a6d3755d6da4e

  • SHA512

    60dd16fa1dbf3ecfab602d12fb4a4394d3eccfe1c05bbd070f7d26948ee3e9fe60598626dbfab8698bbde0e69da0872dbcadffe3f8a7ddacfed29514689206dd

  • SSDEEP

    24576:YverXhY4aMderBh6qODjK2aoESpTAfXXoabimB3t0RI0yGH/3TlMsPNLdw9mU6R/:3Xzavz66aESpA/bbimB8xrOkNRw9mbSM

Score
9/10
discovery

Malware Config

Targets

    • Target

      5a7c04cc29de43a27029280485d6393c_JaffaCakes118

    • Size

      1.6MB

    • MD5

      5a7c04cc29de43a27029280485d6393c

    • SHA1

      9f6dfe5c9bf2e88d40f628d46464be6d8c92e2bf

    • SHA256

      c49ecf6d13ec92f69ca864760d81bfd5f5200dbe3c0932c0c51a6d3755d6da4e

    • SHA512

      60dd16fa1dbf3ecfab602d12fb4a4394d3eccfe1c05bbd070f7d26948ee3e9fe60598626dbfab8698bbde0e69da0872dbcadffe3f8a7ddacfed29514689206dd

    • SSDEEP

      24576:YverXhY4aMderBh6qODjK2aoESpTAfXXoabimB3t0RI0yGH/3TlMsPNLdw9mU6R/:3Xzavz66aESpA/bbimB8xrOkNRw9mbSM

    Score
    9/10
    discovery

    • Detected Nirsoft tools

      Free utilities often used by attackers which can steal passwords, product keys, etc.

    • Executes dropped EXE

    • Loads dropped DLL

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks