Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

a0e816ae09...18.exe

windows7-x64

8

a0e816ae09...18.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a0e816ae09c6ff5434a8000a3428fff5_JaffaCakes118

  • Size

    768KB

  • Sample

    240817-c6crdswdjj

  • MD5

    a0e816ae09c6ff5434a8000a3428fff5

  • SHA1

    97e59aeda209a2ece4ba6c7fd5fa1f28efbb0587

  • SHA256

    36c780fb2d44716ec8e470f09cdbae9ea76fb7847e8880c6654ead1a16c1b4f8

  • SHA512

    8c5a8252a7bb551540fd4338069155bf4217f311ec4db519d0d6ace0266467771e209e428d78d5dd7b7b35827d03d85538a20c3db90fb589cd614f30f27ea417

  • SSDEEP

    12288:wi1x55UIEhlCXvkXVg8IBjLvl8NLrcgIHMlNCQQUivUqzxmmPCiRG:BGIEuvQERvWxrctHMlNCQQUi8ohw

Score
8/10
discoverypersistenceprivilege_escalation

Malware Config

Targets

    • Target

      a0e816ae09c6ff5434a8000a3428fff5_JaffaCakes118

    • Size

      768KB

    • MD5

      a0e816ae09c6ff5434a8000a3428fff5

    • SHA1

      97e59aeda209a2ece4ba6c7fd5fa1f28efbb0587

    • SHA256

      36c780fb2d44716ec8e470f09cdbae9ea76fb7847e8880c6654ead1a16c1b4f8

    • SHA512

      8c5a8252a7bb551540fd4338069155bf4217f311ec4db519d0d6ace0266467771e209e428d78d5dd7b7b35827d03d85538a20c3db90fb589cd614f30f27ea417

    • SSDEEP

      12288:wi1x55UIEhlCXvkXVg8IBjLvl8NLrcgIHMlNCQQUivUqzxmmPCiRG:BGIEuvQERvWxrctHMlNCQQUi8ohw

    Score
    8/10
    discoverypersistenceprivilege_escalation

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • Executes dropped EXE

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks