Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

7

8e7ee85d13...18.exe

windows7-x64

10

8e7ee85d13...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    8e7ee85d1358896ae4b5fad17a7f2c58_JaffaCakes118

  • Size

    118KB

  • Sample

    240812-m6lz6sybkm

  • MD5

    8e7ee85d1358896ae4b5fad17a7f2c58

  • SHA1

    9f68e67c063a6c2fa389e4d1c6fd181daefa168c

  • SHA256

    b363e4ef335ca9e9639879569f60a2e5cecc5647f484b1b73acdca8a38981a7b

  • SHA512

    23258f5f53e57bfe6b698d23e12ffb066f5ff1d1e6911df76195bbd55e3df7c1eedd3b92877b70e7a4bd2ce5144d50b988c04a64e24f6777c34ac2710b8c3116

  • SSDEEP

    3072:qoy8j7VnNdrPHaSekwi+mW0uLceH7n+out:a8jZ7rvaU3+mW0oceb+oS

Score
10/10
modiloaderdiscoveryevasiontrojanupx

Malware Config

Targets

    • Target

      8e7ee85d1358896ae4b5fad17a7f2c58_JaffaCakes118

    • Size

      118KB

    • MD5

      8e7ee85d1358896ae4b5fad17a7f2c58

    • SHA1

      9f68e67c063a6c2fa389e4d1c6fd181daefa168c

    • SHA256

      b363e4ef335ca9e9639879569f60a2e5cecc5647f484b1b73acdca8a38981a7b

    • SHA512

      23258f5f53e57bfe6b698d23e12ffb066f5ff1d1e6911df76195bbd55e3df7c1eedd3b92877b70e7a4bd2ce5144d50b988c04a64e24f6777c34ac2710b8c3116

    • SSDEEP

      3072:qoy8j7VnNdrPHaSekwi+mW0uLceH7n+out:a8jZ7rvaU3+mW0oceb+oS

    Score
    10/10
    modiloaderdiscoveryevasiontrojanupx

    • ModiLoader, DBatLoader

      ModiLoader is a Delphi loader that misuses cloud services to download other malicious families.

      trojanmodiloader

    • UAC bypass

      evasiontrojan

    • ModiLoader Second Stage

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks whether UAC is enabled

      evasiontrojan
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks