Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

7

a80e70d7b0...18.exe

windows7-x64

10

a80e70d7b0...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    a80e70d7b09195f2297d4743449ccc0a_JaffaCakes118

  • Size

    70KB

  • Sample

    240818-yzgbwssbjh

  • MD5

    a80e70d7b09195f2297d4743449ccc0a

  • SHA1

    a0d428cb3a2435ac6fb43e051efd74c98bc54812

  • SHA256

    ec21c430c7f5e3c1fc7ff2661d0ae48a73ddedd3b9dc942bd7c6dd1dd71fb577

  • SHA512

    61ecaa90b64c1c0b419a97810df3e5d2186f383ecbbc2f4f0cbbe5ecd03c28db2e1a208b207c1750bea8b4f5fa240c0bf1bfebcf0249328f7e6528a228cee0f3

  • SSDEEP

    1536:JY5fA48bnhYRpdv8iOq1A8ehDmkLuzEa5TUgEmzHSBmI+ldE9xcH:JYNutqdv6q1AtDKXTuBmV3E8H

Score
10/10
discoverypersistenceupx

Malware Config

Targets

    • Target

      a80e70d7b09195f2297d4743449ccc0a_JaffaCakes118

    • Size

      70KB

    • MD5

      a80e70d7b09195f2297d4743449ccc0a

    • SHA1

      a0d428cb3a2435ac6fb43e051efd74c98bc54812

    • SHA256

      ec21c430c7f5e3c1fc7ff2661d0ae48a73ddedd3b9dc942bd7c6dd1dd71fb577

    • SHA512

      61ecaa90b64c1c0b419a97810df3e5d2186f383ecbbc2f4f0cbbe5ecd03c28db2e1a208b207c1750bea8b4f5fa240c0bf1bfebcf0249328f7e6528a228cee0f3

    • SSDEEP

      1536:JY5fA48bnhYRpdv8iOq1A8ehDmkLuzEa5TUgEmzHSBmI+ldE9xcH:JYNutqdv6q1AtDKXTuBmV3E8H

    Score
    10/10
    discoverypersistenceupx

    • Modifies WinLogon for persistence

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks