Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

5f2aaa3458...18.exe

windows7-x64

8

5f2aaa3458...18.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5f2aaa3458a8a94a91dd71586935b2b2_JaffaCakes118

  • Size

    770KB

  • Sample

    240720-fzc1cs1fng

  • MD5

    5f2aaa3458a8a94a91dd71586935b2b2

  • SHA1

    a16221e31c960dafe501a3fca7e394d92c0e0682

  • SHA256

    af351378c41c581f1f9b8fb2d80090e4aa1ec844c417eb0ebae479be4cbc6ce3

  • SHA512

    fc3a35ba008523cb21e4006b34e5fcf7e8935471c4ccf40661737dad62f5de4acc0e83f8d7692517e93488b06290edb913a0e9f9a790c54dde06bdacb055e094

  • SSDEEP

    12288:0krXV6E2/ZX7kGRE/E2HjwZCSBcbn68wGhQ4kkR7DaKAa9VSaQwBirzeF58Lm32:XF6E2BX4qByk4vwGhQ4w+BomWY2

Score
8/10
persistence

Malware Config

Targets

    • Target

      5f2aaa3458a8a94a91dd71586935b2b2_JaffaCakes118

    • Size

      770KB

    • MD5

      5f2aaa3458a8a94a91dd71586935b2b2

    • SHA1

      a16221e31c960dafe501a3fca7e394d92c0e0682

    • SHA256

      af351378c41c581f1f9b8fb2d80090e4aa1ec844c417eb0ebae479be4cbc6ce3

    • SHA512

      fc3a35ba008523cb21e4006b34e5fcf7e8935471c4ccf40661737dad62f5de4acc0e83f8d7692517e93488b06290edb913a0e9f9a790c54dde06bdacb055e094

    • SSDEEP

      12288:0krXV6E2/ZX7kGRE/E2HjwZCSBcbn68wGhQ4kkR7DaKAa9VSaQwBirzeF58Lm32:XF6E2BX4qByk4vwGhQ4w+BomWY2

    Score
    8/10
    persistence

    • Adds policy Run key to start application

      persistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks