Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

a7df73fe92...18.exe

windows7-x64

7

a7df73fe92...18.exe

windows10-2004-x64

7

$TEMP/rjjmanpw.exe

windows7-x64

5

$TEMP/rjjmanpw.exe

windows10-2004-x64

5

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a7df73fe928fbb26f29aeeb7a8b0a82b_JaffaCakes118

  • Size

    104KB

  • Sample

    240818-xwnq5asgjp

  • MD5

    a7df73fe928fbb26f29aeeb7a8b0a82b

  • SHA1

    3795602954da5dae4a58745752416bfd323ab73c

  • SHA256

    1bc8659958762a59361560208c31dafce0a3c370cf2d5071b745fa2cb641b7b6

  • SHA512

    afef8400ac82a207e3fe4ea58173a3dd198ddc1042dbb9d8152c6a343aa894d34f00076979aad1ffe15e70fee18ecb9e0a2b33e0dceac9b56e50c459bad0d80a

  • SSDEEP

    3072:4gXdZt9P6D3XJcM5tSGagNxOTSZWki3VJWk1BSqeJq7DxKP13LvP:4e34f7l9xYSZPe6sBSqeEPxI1rP

Score
7/10
discovery

Malware Config

Targets

    • Target

      a7df73fe928fbb26f29aeeb7a8b0a82b_JaffaCakes118

    • Size

      104KB

    • MD5

      a7df73fe928fbb26f29aeeb7a8b0a82b

    • SHA1

      3795602954da5dae4a58745752416bfd323ab73c

    • SHA256

      1bc8659958762a59361560208c31dafce0a3c370cf2d5071b745fa2cb641b7b6

    • SHA512

      afef8400ac82a207e3fe4ea58173a3dd198ddc1042dbb9d8152c6a343aa894d34f00076979aad1ffe15e70fee18ecb9e0a2b33e0dceac9b56e50c459bad0d80a

    • SSDEEP

      3072:4gXdZt9P6D3XJcM5tSGagNxOTSZWki3VJWk1BSqeJq7DxKP13LvP:4e34f7l9xYSZPe6sBSqeEPxI1rP

    Score
    7/10
    discovery

    • Executes dropped EXE

    • Loads dropped DLL

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

    • Target

      $TEMP/rjjmanpw.exe

    • Size

      128KB

    • MD5

      c8ad9f49632247cf36173e5c6f225882

    • SHA1

      1bda98f1c454db6bb27ea50d6731a9034f588758

    • SHA256

      f0e1a2a2c83d352691c0b5b2ce9c53920d3a0457ddf20e3648b0f01ed2d24215

    • SHA512

      aad1232869c55e09fda2567ff979631102d217ba7245b35f627d805250b0497fc3c74fc8e2d3938c452abe4e7a2311effa0316fce9f7c8c0a030d44b0a99f6da

    • SSDEEP

      768:rwhdQoTa4JZw4DCLUhB7L10lrPGQYhn6v8iQwUGGdupZLOsguUL2aERrNbakQn:rw8oHJFCoWFIzwUGGE8DuKp+a

    Score
    5/10
    discovery

    • Suspicious use of SetThreadContext

    behavioral3behavioral4

MITRE ATT&CK Enterprise v15

Tasks