Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

5f8f6a362f...18.exe

windows7-x64

7

5f8f6a362f...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5f8f6a362f1f5c6d2f7ddbacc8943748_JaffaCakes118

  • Size

    164KB

  • Sample

    240720-h9dezsscnk

  • MD5

    5f8f6a362f1f5c6d2f7ddbacc8943748

  • SHA1

    f27cde7db4d5c2f37575f572caf623abb0df565f

  • SHA256

    4e61d8ff4c2d9e65504b5b1e4ccde6e8923a48440197e22bcbcef0a5bbe4a57e

  • SHA512

    da11b942d58679a6c87baa8207f6f79d40424b432da3a2d70beaca1acb6279af80475aed830cd811e7c67b281b5a36ed827b2fc72de5b78743b0fa63cb172efc

  • SSDEEP

    3072:mnj9/tfUyINndIc0JxKxvuu0Af6mnroOFF6lku2MKoGnmWcDWcb5H1/b:mj3eicxwASmn0qg5b5V/b

Score
7/10
persistenceupx

Malware Config

Targets

    • Target

      5f8f6a362f1f5c6d2f7ddbacc8943748_JaffaCakes118

    • Size

      164KB

    • MD5

      5f8f6a362f1f5c6d2f7ddbacc8943748

    • SHA1

      f27cde7db4d5c2f37575f572caf623abb0df565f

    • SHA256

      4e61d8ff4c2d9e65504b5b1e4ccde6e8923a48440197e22bcbcef0a5bbe4a57e

    • SHA512

      da11b942d58679a6c87baa8207f6f79d40424b432da3a2d70beaca1acb6279af80475aed830cd811e7c67b281b5a36ed827b2fc72de5b78743b0fa63cb172efc

    • SSDEEP

      3072:mnj9/tfUyINndIc0JxKxvuu0Af6mnroOFF6lku2MKoGnmWcDWcb5H1/b:mj3eicxwASmn0qg5b5V/b

    Score
    7/10
    persistenceupx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks