Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

a202f186f5...18.exe

windows7-x64

7

a202f186f5...18.exe

windows10-2004-x64

7

$PLUGINSDI...nt.dll

windows7-x64

3

$PLUGINSDI...nt.dll

windows10-2004-x64

3

$PLUGINSDI...LL.dll

windows7-x64

3

$PLUGINSDI...LL.dll

windows10-2004-x64

3

$PLUGINSDI...st.dll

windows7-x64

3

$PLUGINSDI...st.dll

windows10-2004-x64

3

$PLUGINSDI...ec.dll

windows7-x64

3

$PLUGINSDI...ec.dll

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a202f186f53fd1968bae80ebd5042c65_JaffaCakes118

  • Size

    121KB

  • Sample

    240817-ledn2s1grj

  • MD5

    a202f186f53fd1968bae80ebd5042c65

  • SHA1

    5ae007bf528f99111a27e708b4213047e9c656c8

  • SHA256

    7d61f084f43e4f3219c6d43910b998693703c16bee64d6553b07c7d894c616e7

  • SHA512

    1de52fde7c3ffc950079a3b4998584b3dbe7ea12b103374f89feee3297bf6bbdd0a6b2bdc5e7eca49b67d273d52c423559df84da035afac88bbdef594dbbc38b

  • SSDEEP

    3072:ZLk395hYXJnceADRRD2xMKdWanB5u9+nleepEcB94p:ZQq1mDRZRwB1eepEcBw

Score
7/10
discovery

Malware Config

Targets

    • Target

      a202f186f53fd1968bae80ebd5042c65_JaffaCakes118

    • Size

      121KB

    • MD5

      a202f186f53fd1968bae80ebd5042c65

    • SHA1

      5ae007bf528f99111a27e708b4213047e9c656c8

    • SHA256

      7d61f084f43e4f3219c6d43910b998693703c16bee64d6553b07c7d894c616e7

    • SHA512

      1de52fde7c3ffc950079a3b4998584b3dbe7ea12b103374f89feee3297bf6bbdd0a6b2bdc5e7eca49b67d273d52c423559df84da035afac88bbdef594dbbc38b

    • SSDEEP

      3072:ZLk395hYXJnceADRRD2xMKdWanB5u9+nleepEcB94p:ZQq1mDRZRwB1eepEcBw

    Score
    7/10
    discovery

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

    • Target

      $PLUGINSDIR/DLLWebCount.dll

    • Size

      28KB

    • MD5

      d825e4003d1697fd4bc45361e222746c

    • SHA1

      e9d4b1073aac15d4dbb430471fcaea549e633d13

    • SHA256

      c79e4be74eecf16f2f7f1d39724c938bf372e9568bb96fa4610926a57fe323f5

    • SHA512

      7740a18cae5a42963c748a49ac6175482c93b34dce703a7cf24f5828ee6cdc19eb2669a634b64c2a4c861272f7e9b9e943455195a7cd6afcd8fa5586744eb86f

    • SSDEEP

      96:unHQKcixlYedrGcCM4JuGylQu4BudGaFHiYueH:uHJciUM4JmuLYdbFHiRe

    Score
    3/10
    discovery
    behavioral3behavioral4

    • Target

      $PLUGINSDIR/KillProcDLL.dll

    • Size

      44KB

    • MD5

      3599d30554ad65dc29fc689217d2152e

    • SHA1

      8f5fcc313b667a1de2d56573bcf98d43fd0d4ff9

    • SHA256

      1af3ac7d3176af42e8594ba0c33821d3318f4eea5cbb799bf8fab58e480efe0e

    • SHA512

      846776b1d908b5204667715ffdfd3a6c76dface1677e8b1e5156ceac2ef0a739f68b48ccbb919c9e08d6ff359a93174bf0b90def7d48cee54cd3c41d8d8575f2

    • SSDEEP

      768:oY6+2hD1lu3SFh80Z9pe7nJRJ3QN8DOUVowlo+J:76xhZlM0h/9panJ73CSFl

    Score
    3/10
    discovery
    behavioral5behavioral6

    • Target

      $PLUGINSDIR/NSISList.dll

    • Size

      97KB

    • MD5

      2e0785f18f8714393bc4bc1fe170eadf

    • SHA1

      1efba431c0fac46c6cb6f60dc08f65a0e23ccf3d

    • SHA256

      e68d65626b24e7c1f6fbe1001f43174d0243095181025736f37ad704662f4351

    • SHA512

      8a272bb264fa066960a4f34411a81652839eccdbc6fa25be20c0b94d7d10b16cb568338abb5d1a96c155cbc4bc7923d0387fa36bed69c1021296cc6cc5fbb45e

    • SSDEEP

      3072:MoENnpXlyqLIslzjPfJ4/EiJtu0s+8Q0wRwFP:MoEf1ySz6Jsx5

    Score
    3/10
    discovery
    behavioral7behavioral8

    • Target

      $PLUGINSDIR/nsExec.dll

    • Size

      6KB

    • MD5

      acc2b699edfea5bf5aae45aba3a41e96

    • SHA1

      d2accf4d494e43ceb2cff69abe4dd17147d29cc2

    • SHA256

      168a974eaa3f588d759db3f47c1a9fdc3494ba1fa1a73a84e5e3b2a4d58abd7e

    • SHA512

      e29ea10ada98c71a18273b04f44f385b120d4e8473e441ce5748cfa44a23648814f2656f429b85440157988c88de776c6ac008dc38bf09cbb746c230a46c69fe

    • SSDEEP

      96:M7GUb+YNfwgcr8zyKwZ5S4JxN8BS0ef9/3VI9d0qqyVgNk32E:eKgfwgcr8zylsB49Ud0qJVgNX

    Score
    3/10
    discovery
    behavioral10behavioral9

MITRE ATT&CK Enterprise v15

Tasks