Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

7

5ab6568628...18.exe

windows7-x64

7

5ab6568628...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5ab656862856985ef71299e81669da7a_JaffaCakes118

  • Size

    188KB

  • Sample

    240719-glb2ksyfmg

  • MD5

    5ab656862856985ef71299e81669da7a

  • SHA1

    1413c5861b7ceb82328e2edca98b81e668df257f

  • SHA256

    005111b6f8ea84619f72f317d1355b150401b8373ce50c359d91dc523a23fcdf

  • SHA512

    ba87ffdd78ffb3ab8f1338a415ac9a93a492ce431e0a04bf2a093dec2a543e055b24d79529304257ef3fa6a2e25cdfc7dc33ff8fd9a50ee71c317a0c882b7fe0

  • SSDEEP

    3072:Oa78q9i2tYsAQHvs0SWmeTyjjLIaeksx/jFnEjdu3oL2ECwt8E72eM7MzQK+LJcv:Oa7DmPQE03WjBelFcSa2Eh7fM7YQmwwZ

Score
7/10
persistenceupx

Malware Config

Targets

    • Target

      5ab656862856985ef71299e81669da7a_JaffaCakes118

    • Size

      188KB

    • MD5

      5ab656862856985ef71299e81669da7a

    • SHA1

      1413c5861b7ceb82328e2edca98b81e668df257f

    • SHA256

      005111b6f8ea84619f72f317d1355b150401b8373ce50c359d91dc523a23fcdf

    • SHA512

      ba87ffdd78ffb3ab8f1338a415ac9a93a492ce431e0a04bf2a093dec2a543e055b24d79529304257ef3fa6a2e25cdfc7dc33ff8fd9a50ee71c317a0c882b7fe0

    • SSDEEP

      3072:Oa78q9i2tYsAQHvs0SWmeTyjjLIaeksx/jFnEjdu3oL2ECwt8E72eM7MzQK+LJcv:Oa7DmPQE03WjBelFcSa2Eh7fM7YQmwwZ

    Score
    7/10
    persistenceupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence

    • Legitimate hosting services abused for malware hosting/C2

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks