Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

a617a72591...18.exe

windows7-x64

10

a617a72591...18.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a617a72591ef7a3fb5345c63ec75ba47_JaffaCakes118

  • Size

    393KB

  • Sample

    240818-khgpfavera

  • MD5

    a617a72591ef7a3fb5345c63ec75ba47

  • SHA1

    e5540ae508033eaff5284d4124dc8116c6ec11f3

  • SHA256

    1fbcf9a8203f2a224b81e074be61c7341279856e022ea8f055711b23dafc26c8

  • SHA512

    7416873e1ef08b9706ad23a5ebd6f6fec690c25a2f49a570a8b054a518412fd35f554d4ebf891198c0672843fce19069342c11b3a941dc2ccdf744311c39718f

  • SSDEEP

    6144:OwUeNULfjGQXr8sQwJ8RdCCKoryzWz0cSxhIC/aulYcJeNsrFS/Zt3Zu7N+H00:OwvULyjQorymC/aWYuosit3ZaN+U0

Score
10/10
discoveryevasionpersistencetrojan

Malware Config

Targets

    • Target

      a617a72591ef7a3fb5345c63ec75ba47_JaffaCakes118

    • Size

      393KB

    • MD5

      a617a72591ef7a3fb5345c63ec75ba47

    • SHA1

      e5540ae508033eaff5284d4124dc8116c6ec11f3

    • SHA256

      1fbcf9a8203f2a224b81e074be61c7341279856e022ea8f055711b23dafc26c8

    • SHA512

      7416873e1ef08b9706ad23a5ebd6f6fec690c25a2f49a570a8b054a518412fd35f554d4ebf891198c0672843fce19069342c11b3a941dc2ccdf744311c39718f

    • SSDEEP

      6144:OwUeNULfjGQXr8sQwJ8RdCCKoryzWz0cSxhIC/aulYcJeNsrFS/Zt3Zu7N+H00:OwvULyjQorymC/aWYuosit3ZaN+U0

    Score
    10/10
    discoveryevasionpersistencetrojan

    • Windows security bypass

      evasiontrojan

    • Disables taskbar notifications via registry modification

      evasion

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Windows security modification

      evasiontrojan

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks