Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    746f12a372e559757e4f66535989e99e_JaffaCakes118

  • Size

    959KB

  • Sample

    240726-rq1kvawhra

  • MD5

    746f12a372e559757e4f66535989e99e

  • SHA1

    46c5c6450bc4397536bdf709f0252091d314222b

  • SHA256

    45d844a76da925ae4a554700e67c448cc9294a3e18e78b920b0a4e31f8667d3d

  • SHA512

    0576e44f90f50523ec01654d7ddf55dc5a3c0efa83fb57b07e61016fc2f6e24b4d18c2ee47ef6842ced8c89d73406797d5ba91650a85f0f9c9e8a2328b76956d

  • SSDEEP

    24576:OQ3OlEpPXpk6XQh1MEGDBl3seHYeS3PCXVAiEOiYZ:D3OcZk6SME0B+e4hfe4Of

Score
7/10

Malware Config

Targets

    • Target

      746f12a372e559757e4f66535989e99e_JaffaCakes118

    • Size

      959KB

    • MD5

      746f12a372e559757e4f66535989e99e

    • SHA1

      46c5c6450bc4397536bdf709f0252091d314222b

    • SHA256

      45d844a76da925ae4a554700e67c448cc9294a3e18e78b920b0a4e31f8667d3d

    • SHA512

      0576e44f90f50523ec01654d7ddf55dc5a3c0efa83fb57b07e61016fc2f6e24b4d18c2ee47ef6842ced8c89d73406797d5ba91650a85f0f9c9e8a2328b76956d

    • SSDEEP

      24576:OQ3OlEpPXpk6XQh1MEGDBl3seHYeS3PCXVAiEOiYZ:D3OcZk6SME0B+e4hfe4Of

    Score
    7/10
    • Loads dropped DLL

    • Target

      $PLUGINSDIR/InstallOptions.dll

    • Size

      14KB

    • MD5

      325b008aec81e5aaa57096f05d4212b5

    • SHA1

      27a2d89747a20305b6518438eff5b9f57f7df5c3

    • SHA256

      c9cd5c9609e70005926ae5171726a4142ffbcccc771d307efcd195dafc1e6b4b

    • SHA512

      18362b3aee529a27e85cc087627ecf6e2d21196d725f499c4a185cb3a380999f43ff1833a8ebec3f5ba1d3a113ef83185770e663854121f2d8b885790115afdf

    • SSDEEP

      192:86d+dHXLHQOPiY53uiUdigyU+WsPdc/A1A+2jwK72dwF7dBEnbok:86UdHXcIiY535zBt2jw+BEnbo

    Score
    3/10
    • Target

      $PLUGINSDIR/NSISdl.dll

    • Size

      14KB

    • MD5

      a5f8399a743ab7f9c88c645c35b1ebb5

    • SHA1

      168f3c158913b0367bf79fa413357fbe97018191

    • SHA256

      dacc88a12d3ba438fdae3535dc7a5a1d389bce13adc993706424874a782e51c9

    • SHA512

      824e567f5211bf09c7912537c7836d761b0934207612808e9a191f980375c6a97383dbc6b4a7121c6b5f508cbfd7542a781d6b6b196ca24841f73892eec5e977

    • SSDEEP

      192:tUZTobBDJ68r67wmsvJI5ad9cXzFOVu+mZ/P3p+57CvpVqDxVp01Dwn2GRPgsfA:6Bo/680dCI5adOjFOg9//p27uNw2Go

    Score
    3/10
    • Target

      $PLUGINSDIR/nsis.exe

    • Size

      449KB

    • MD5

      66593d90971bacde852205a23ebd5d07

    • SHA1

      f8311c8b80cf65fefa6c05487de52206f6dd808b

    • SHA256

      134fbd331ff984c9d8bbc851361f72243e1f643b25a1c1f2e0daefcc521cad54

    • SHA512

      d38ce45ed18e589ac03b35fe7044072f5c53d41f4edd5ce83d30df6bd76b747e290aaa95483783a7e9bed1cb36133a5d0e65568003888f48e54d3ad50ee8c66d

    • SSDEEP

      12288:dt2t3AcfHTJ0T3FZeDoEk1d4PzZ/9KF9eSF:GB7Ht63Ikf4PzZGeSF

    Score
    7/10
    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Target

      GinoPlayer.exe

    • Size

      230KB

    • MD5

      c82bba9c6fb9d1bf2ec4e114d8456844

    • SHA1

      f1d9856b01626ef8b84a70f50df13be6b2ce4823

    • SHA256

      69a75ecbd4db1dde170e23e4c227d62269346244c1861bdfb41b9da358d89ef1

    • SHA512

      ee49770382d0b2ee9647fd8d4e91dfc98bf69522bca08cbc9c1a6e0a4900ca24f29111bb3a220895c07cccbe80b9a871a2bcbcc0e5ea72502dd28c37ffeaf1ef

    • SSDEEP

      3072:ZX3Bhg694tjSg694tdHoPgR4PKmAsFTmIeBOtYAVoHhDL0ad/dl+rozWlyf/tVzV:c5+PU4JjyONVoHhDL0ad/dl+Tyf/n4

    Score
    6/10
    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Target

      Interop.WMPLib.dll

    • Size

      284KB

    • MD5

      d92527eaf9868a78a3153242d3b6098d

    • SHA1

      0a63e538fededd292e05364d62dfeab278eac413

    • SHA256

      5d36a9c572a309d3cc632ac8c7a1e4ea6fc3969b31dc6d1a9284dea44a213d80

    • SHA512

      27422787764863547331144a26fdb233f859a98c5fe15e1b1dcffa9c295da1535ca049e980e4a29d6068cd0fa54f947bfbda76e851c524a711611d6949d5a3ea

    • SSDEEP

      6144:UMfmxYbidUn+MCdW85I6hI3uFc7y5g/md0Dqx4HeVMriJQPWtkzaBoXOl8bSZAfl:UMfmxYbidUn+MCdW85I6hI3uFc7y5g/j

    Score
    1/10
    • Target

      Uninstall.exe

    • Size

      77KB

    • MD5

      ff11f586d42a888469164063c399d917

    • SHA1

      b3feded2344ea9a22035f628a441883c6216bf3e

    • SHA256

      869c31354b5c3f1c7586fec5c51270a606ca5210d4ea9df4a078a1d7bc62112e

    • SHA512

      573c35c9f066a2fbfba29d1cee5157b0d518d62210beb088d8c5380d43da4ee749a215ff76531e9ff59161a6449bdb44e3e0ee2ec4b18e03e0d36cbb131cbc86

    • SSDEEP

      1536:7iZU91Rzv4f/+LHgmpoM4sXJKTmdxQi5jaQkaB72/v97+N:7iezvrL9oMXJKatjIg639KN

    Score
    7/10
    • Executes dropped EXE

    • Loads dropped DLL

    • Target

      $PLUGINSDIR/InstallOptions.dll

    • Size

      14KB

    • MD5

      325b008aec81e5aaa57096f05d4212b5

    • SHA1

      27a2d89747a20305b6518438eff5b9f57f7df5c3

    • SHA256

      c9cd5c9609e70005926ae5171726a4142ffbcccc771d307efcd195dafc1e6b4b

    • SHA512

      18362b3aee529a27e85cc087627ecf6e2d21196d725f499c4a185cb3a380999f43ff1833a8ebec3f5ba1d3a113ef83185770e663854121f2d8b885790115afdf

    • SSDEEP

      192:86d+dHXLHQOPiY53uiUdigyU+WsPdc/A1A+2jwK72dwF7dBEnbok:86UdHXcIiY535zBt2jw+BEnbo

    Score
    3/10
    • Target

      launcher.exe

    • Size

      550KB

    • MD5

      9b83990fce13716ad79131772b15c915

    • SHA1

      989dfc018c35a0242523c722da6fa881aa9f2678

    • SHA256

      5b2338071972a864622a36a4452d218d70f1c80024c6f7d84e1c5aa590efd5d1

    • SHA512

      e3ae253c7f9c3bdefe0965af1a788f26025c0994c2bcf76ed7c4048dad648b383bf245bd2854c90c40dd6f453868f9dec2b86cce8414dcfd00c61c898ace1c38

    • SSDEEP

      12288:een6U3av8FtwV5qgsD8v3MJdogR7eKObvc5hAe:e03av8Ft45/3FSFOTc

    Score
    3/10

MITRE ATT&CK Enterprise v15

Tasks