Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

9460ddd0e6...18.exe

windows7-x64

10

9460ddd0e6...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9460ddd0e629806364bcaba850e9415c_JaffaCakes118

  • Size

    982KB

  • Sample

    240813-xx4tqswdjj

  • MD5

    9460ddd0e629806364bcaba850e9415c

  • SHA1

    bf3eadc3f354f90c1ce10facf83dee1eaff3681c

  • SHA256

    b983ae4301273ef2c7b5117e884574a14e43ec6f3bd0ab9df29040a4f2fad634

  • SHA512

    cb7a4af073ae63489f9f6507838c498236f42312a3c9c19b68c03bc5d753574a05eea61724fb2579364cbb530ad0640a83dd20e9cfa5de9066d165c5a58b6867

  • SSDEEP

    12288:0SjzwRzH1RighUFZzHtC9FDY8c8H+Lm/yjxeiSOHTApwn2fTrNsef1JOXa0ii:teVRrhMxY9FDY8cLa/OerzTrNtS4

Score
10/10
discoverypersistence

Malware Config

Targets

    • Target

      9460ddd0e629806364bcaba850e9415c_JaffaCakes118

    • Size

      982KB

    • MD5

      9460ddd0e629806364bcaba850e9415c

    • SHA1

      bf3eadc3f354f90c1ce10facf83dee1eaff3681c

    • SHA256

      b983ae4301273ef2c7b5117e884574a14e43ec6f3bd0ab9df29040a4f2fad634

    • SHA512

      cb7a4af073ae63489f9f6507838c498236f42312a3c9c19b68c03bc5d753574a05eea61724fb2579364cbb530ad0640a83dd20e9cfa5de9066d165c5a58b6867

    • SSDEEP

      12288:0SjzwRzH1RighUFZzHtC9FDY8c8H+Lm/yjxeiSOHTApwn2fTrNsef1JOXa0ii:teVRrhMxY9FDY8cLa/OerzTrNtS4

    Score
    10/10
    discoverypersistence

    • Modifies WinLogon for persistence

      persistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks