Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

7

8ae0e3844a...18.exe

windows7-x64

7

8ae0e3844a...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    8ae0e3844a86aac5368848ca5a27be5d_JaffaCakes118

  • Size

    227KB

  • Sample

    240811-spw2pszaqd

  • MD5

    8ae0e3844a86aac5368848ca5a27be5d

  • SHA1

    b0ae2f5f488457d6905728e21b244a3cc09a4177

  • SHA256

    dd89d25ecbd42a7f2941807a3757a2ae7cf67264a72cb6f690699607c0353859

  • SHA512

    173c41a4b0f8712338a644578c2e2e41549078976de508f6afd7f817efc855da8d327ffcbc0ef0e91e4c680e38df506f4a00a3fd45da3198ec3b2f79a0e3c903

  • SSDEEP

    6144:qqJcy8ESUGW57xBNyY7OsNpqNh832m8NgdZrT9bCNGic:d9xjyY7lbnGmrT9bCNGf

Score
7/10
discoverypersistenceupx

Malware Config

Targets

    • Target

      8ae0e3844a86aac5368848ca5a27be5d_JaffaCakes118

    • Size

      227KB

    • MD5

      8ae0e3844a86aac5368848ca5a27be5d

    • SHA1

      b0ae2f5f488457d6905728e21b244a3cc09a4177

    • SHA256

      dd89d25ecbd42a7f2941807a3757a2ae7cf67264a72cb6f690699607c0353859

    • SHA512

      173c41a4b0f8712338a644578c2e2e41549078976de508f6afd7f817efc855da8d327ffcbc0ef0e91e4c680e38df506f4a00a3fd45da3198ec3b2f79a0e3c903

    • SSDEEP

      6144:qqJcy8ESUGW57xBNyY7OsNpqNh832m8NgdZrT9bCNGic:d9xjyY7lbnGmrT9bCNGf

    Score
    7/10
    discoverypersistenceupx

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks