Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

70eae9cd4f...18.exe

windows7-x64

10

70eae9cd4f...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    70eae9cd4f104a8c6cddea5b0f26d16b_JaffaCakes118

  • Size

    172KB

  • Sample

    240725-x63m2azcpq

  • MD5

    70eae9cd4f104a8c6cddea5b0f26d16b

  • SHA1

    d1e046598f2995cb935f49d83360e9e1cc72042c

  • SHA256

    714ed5889fd879e87f933f434b02fb03b29959269e05b9b78689cc2ad84fb17e

  • SHA512

    d326a38d7049281e2f2247cfe902401c22b9cea5531aba98f2c4ffabcaf5fad70a44bf70372460e7a6719b1d56cbd2280e805cd029712b6324d93fc07cacca65

  • SSDEEP

    3072:F57XUwsVFie0OcQcIcHL4B3b0PXL1tkzcW93/D/N37HvKaXAVphUEfEZI1+LR9xk:FewiFieKQcIcHL4B3b0PXL1qzcWt/D/9

Score
10/10
discoveryevasionpersistence

Malware Config

Targets

    • Target

      70eae9cd4f104a8c6cddea5b0f26d16b_JaffaCakes118

    • Size

      172KB

    • MD5

      70eae9cd4f104a8c6cddea5b0f26d16b

    • SHA1

      d1e046598f2995cb935f49d83360e9e1cc72042c

    • SHA256

      714ed5889fd879e87f933f434b02fb03b29959269e05b9b78689cc2ad84fb17e

    • SHA512

      d326a38d7049281e2f2247cfe902401c22b9cea5531aba98f2c4ffabcaf5fad70a44bf70372460e7a6719b1d56cbd2280e805cd029712b6324d93fc07cacca65

    • SSDEEP

      3072:F57XUwsVFie0OcQcIcHL4B3b0PXL1tkzcW93/D/N37HvKaXAVphUEfEZI1+LR9xk:FewiFieKQcIcHL4B3b0PXL1qzcWt/D/9

    Score
    10/10
    discoveryevasionpersistence

    • Modifies visiblity of hidden/system files in Explorer

      evasion

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks