Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

77530170e8...18.exe

windows7-x64

3

77530170e8...18.exe

windows10-2004-x64

3

$PLUGINSDI...am.dll

windows7-x64

3

$PLUGINSDI...am.dll

windows10-2004-x64

3

$PLUGINSDI...nt.dll

windows7-x64

3

$PLUGINSDI...nt.dll

windows10-2004-x64

3

$PLUGINSDI...ge.dll

windows7-x64

3

$PLUGINSDI...ge.dll

windows10-2004-x64

3

$PLUGINSDI...ug.dll

windows7-x64

3

$PLUGINSDI...ug.dll

windows10-2004-x64

3

$PLUGINSDI...ns.dll

windows7-x64

3

$PLUGINSDI...ns.dll

windows10-2004-x64

3

$PLUGINSDI...LL.dll

windows7-x64

3

$PLUGINSDI...LL.dll

windows10-2004-x64

3

$PLUGINSDI...te.dll

windows7-x64

3

$PLUGINSDI...te.dll

windows10-2004-x64

3

$PLUGINSDI...te.exe

windows7-x64

7

$PLUGINSDI...te.exe

windows10-2004-x64

7

$PLUGINSDI...te.exe

windows7-x64

7

$PLUGINSDI...te.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    77530170e8d5543ca80ef97f132af295_JaffaCakes118

  • Size

    146KB

  • Sample

    240727-h1rw1stdpl

  • MD5

    77530170e8d5543ca80ef97f132af295

  • SHA1

    ae2c9d03f3b7a479a74047e44a52bf2183c795f8

  • SHA256

    390d7f26d6eb9d933945df3d6f684f49388e13e2de4f936d81d1388194c15887

  • SHA512

    379b554bde7a0cd1a94b1d6003030cb2701069f839079168debff000471e3313d60784cb6650fdfd929762cec2e8d266d99908960f7a2443f2e07cbee9d1694a

  • SSDEEP

    3072:9Lk395hYXJQ45sMRVXE3A+pMAD40C+7XIHr1J:9QqO/M3XEwyMD0Cg4

Score
7/10
discovery

Malware Config

Targets

    • Target

      77530170e8d5543ca80ef97f132af295_JaffaCakes118

    • Size

      146KB

    • MD5

      77530170e8d5543ca80ef97f132af295

    • SHA1

      ae2c9d03f3b7a479a74047e44a52bf2183c795f8

    • SHA256

      390d7f26d6eb9d933945df3d6f684f49388e13e2de4f936d81d1388194c15887

    • SHA512

      379b554bde7a0cd1a94b1d6003030cb2701069f839079168debff000471e3313d60784cb6650fdfd929762cec2e8d266d99908960f7a2443f2e07cbee9d1694a

    • SSDEEP

      3072:9Lk395hYXJQ45sMRVXE3A+pMAD40C+7XIHr1J:9QqO/M3XEwyMD0Cg4

    Score
    3/10
    discovery
    behavioral1behavioral2

    • Target

      $PLUGINSDIR/DLLWaitForKillProgram.dll

    • Size

      28KB

    • MD5

      9c4b8ec42d89f7557bfd90798ce52787

    • SHA1

      2376dde426ea65aa27c30e304086310605382475

    • SHA256

      ed52bdad7b383a179b9b0e21fefdda2d72695c5263a815d5e1e0bfac6c718548

    • SHA512

      17c12a27a08746755868558c037376dd7e20f03f0f71888c1329903b70975a54f57786c3c32bf88aaf30119f11ed978a6830ba91949e11cfc94fbb5ad95305b7

    • SSDEEP

      96:EP5ZuFye0MyQW4uPwhs+R/+gFrE1m/U/uG98bp2y+HS21kEZ1b+4Tu9C1uGg8wBu:akFyFRQ5wIzlH/UGq36EZY4T+Gul8U

    Score
    3/10
    discovery
    behavioral3behavioral4

    • Target

      $PLUGINSDIR/DLLWebCount.dll

    • Size

      28KB

    • MD5

      0bdd7c6f1046ea4b42839f991ae53fb2

    • SHA1

      cb9baefb10159b4a684fa1ee4372e7715865052d

    • SHA256

      0a0019b2603dbc4505453c2501255ab0cc0b3c317ece4a6ce0cfb6a02a30907b

    • SHA512

      96f41497f25d7bc81f51ab167f74243b4b767089c89c26f9752ef518fa60dedd2722c66ae87dad2334bcce1622bc12f7b9b892ae654ca58cecd9f35c9f1dc163

    • SSDEEP

      192:OQoR7CK9FX/dVPWtJ/tXP88bSNwWW8+YdbDT:OQcWeJ/XPWtJxPFYi8nb

    Score
    3/10
    discovery
    behavioral5behavioral6

    • Target

      $PLUGINSDIR/ExLicensePage.dll

    • Size

      124KB

    • MD5

      aad585325806c44283d41d7789310489

    • SHA1

      8e8d28dedd8ff413010b58c198a594fa4e189dd4

    • SHA256

      935ce9fce8767cf17c0abb89a938137eb57c7d1a20f1c4c2074a58e30666c6ec

    • SHA512

      a7525d295af15c997914387f47f264c8adb87565a8c907d1265e778b6c40849a552f77909ce0f9c1db9f64896733100bd95b329802a2bf837283123b272d0606

    • SSDEEP

      384:d5afJfYl+2aBUogusO0sDhqVPAnMgCwDn5lJL7oL7zj75OCL:dU+uBUnQMkCwFPL7oL7zjICL

    Score
    3/10
    discovery
    behavioral7behavioral8

    • Target

      $PLUGINSDIR/FILEDownPlug.dll

    • Size

      20KB

    • MD5

      2dc96e6ef39e0472a2e21f3e71157cea

    • SHA1

      660377e9d5c7189a9b8320925bc0c4620f7d7cc7

    • SHA256

      92e1e72c1fd1f941172dc37ac8a29732e326d5482602c981d1b69bc31b0907ba

    • SHA512

      b321d349c65e4eef7475ed4275f7e5fcaf1748e9da184da6eef3bc4c4d48a4e307f5e88c80739c669d2cec2c3cd3f933db78aa471f8190de9d0728b1d9dc2273

    • SSDEEP

      24:e1GS1eWyzLFPQ9/4RSuW6qwCgIEwNkfSrcde:Sl0LlQ9wRuw5S

    Score
    3/10
    discovery
    behavioral10behavioral9

    • Target

      $PLUGINSDIR/InstallOptions.dll

    • Size

      14KB

    • MD5

      325b008aec81e5aaa57096f05d4212b5

    • SHA1

      27a2d89747a20305b6518438eff5b9f57f7df5c3

    • SHA256

      c9cd5c9609e70005926ae5171726a4142ffbcccc771d307efcd195dafc1e6b4b

    • SHA512

      18362b3aee529a27e85cc087627ecf6e2d21196d725f499c4a185cb3a380999f43ff1833a8ebec3f5ba1d3a113ef83185770e663854121f2d8b885790115afdf

    • SSDEEP

      192:86d+dHXLHQOPiY53uiUdigyU+WsPdc/A1A+2jwK72dwF7dBEnbok:86UdHXcIiY535zBt2jw+BEnbo

    Score
    3/10
    discovery
    behavioral11behavioral12

    • Target

      $PLUGINSDIR/KillProcDLL.dll

    • Size

      36KB

    • MD5

      6958016193a066833556992077bad4fe

    • SHA1

      5f564945936f99381d7e2408f034f97d069005a4

    • SHA256

      f38c669c87f2a73768a27a01622690997e9d93d5ca3830b349bd24c3ff9f8d2e

    • SHA512

      fd6ab5c341b331b80c940ba97a2cd14547c796933a2df26d3dd87ede1602b86d9f8c37baebd7dd4c68d811199fc96a27ad4cb995bb8889d51af91db9f43ba0a7

    • SSDEEP

      384:IL6T2Izs/XGCanZSwEfj5lwTSYlml89oayKA15JiQNRw/9uosAUdJofiiqd:88Y9gZSwq1lwTS2XA15DRm9cddJo6l

    Score
    3/10
    discovery
    behavioral13behavioral14

    • Target

      $PLUGINSDIR/SelfDelete.dll

    • Size

      24KB

    • MD5

      7bf1bd7661385621c7908e36958f582e

    • SHA1

      43242d7731c097e95fb96753c8262609ff929410

    • SHA256

      c0ad2c13d48c9fe62f898da822a5f08be3bf6c4e2c1c7ffdf7634f2ca4a8859e

    • SHA512

      8317af5cc3ac802eb095f3fa8cc71daa1265ca58fead031c07872f3d4bb07663a7002ae734fad392a7617f0923fe0caf1f54ed55afdf8516a6a08e202d86fa7f

    • SSDEEP

      96:1dIrJYYrzPpqAAZ9sNIaI2y9WulXEGNRrG:nuYATpq/viyYuEYRr

    Score
    3/10
    discovery
    behavioral15behavioral16

    • Target

      $PLUGINSDIR/exadx4_desknote.exe

    • Size

      41KB

    • MD5

      ff614a2aece869e49b4ee75eb7b14000

    • SHA1

      3a7f77d114db71cb16b63c336b368cf747c42def

    • SHA256

      a99c79a17d104a5f00ab232474e093e5d8a64f1674de386764c8af33f83901f5

    • SHA512

      370fcabdb0a185c8447591c47d262b40dc457704c0b21fe1ec77327b96f7d70810aef7a6b678a1924abdc1f1097d6d5c86788bdf479162c8baf647405e2937fb

    • SSDEEP

      768:EHJd0TpH2+bQ2dUWVX9Hfv1JMWmtLEJOyuBxG0D3mjfS3XJyojNctAllGws0q5:EpgpHzb9dZVX9fHMvG0D3XJygNcOmyq5

    Score
    7/10
    discovery

    • Deletes itself

    • Loads dropped DLL

    behavioral17behavioral18

    • Target

      $PLUGINSDIR/quicklink_desknote.exe

    • Size

      41KB

    • MD5

      461904ebd140d4bad858329f729bbfaf

    • SHA1

      eb6234b7150900bd75e42f9de68bdd84239119fd

    • SHA256

      c500be494ba46717484997633dbd0f400f3e86bbea13f277810e8f7d8f0a31e3

    • SHA512

      3f3d63189476eceef30461760acacbeab3c66de00b5afbc41b1a0877c35796715dbe838aad802ed6e8c7497c42e8d4e40d9274d6391bffd0c43d848f5dd1e8d6

    • SSDEEP

      768:EHJd0TpH2+bQ2dUWVX9Hfv1JMWmtLEJOyuBxG0D3mjfS3XJ4njNctAllGws0q6:EpgpHzb9dZVX9fHMvG0D3XJYNcOmyq6

    Score
    7/10
    discovery

    • Deletes itself

    • Loads dropped DLL

    behavioral19behavioral20

MITRE ATT&CK Enterprise v15

Tasks