Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

aa8b1c36b4...18.exe

windows7-x64

aa8b1c36b4...18.exe

windows10-2004-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    aa8b1c36b49c08d3eb13cbb2986f582f_JaffaCakes118

  • Size

    92KB

  • Sample

    240819-lvcrpa1aml

  • MD5

    aa8b1c36b49c08d3eb13cbb2986f582f

  • SHA1

    284612291af905742cdc2ee01d3e42f5ed01ddc4

  • SHA256

    843b2f794cac39f6baa83a7eaf2c464acc65d6b05f3355017adb5999f1456ad5

  • SHA512

    2fb643a01bac7f37bb830e89721e10cafc2ade0e00e56091943efb73b4787819960b6fedfabf905d761e1e29dccf710c7d9c244a6c1f59137bea4242e7d09516

  • SSDEEP

    1536:lB+VUCs9+xW4xtneV/Xn1aJszjOVIQbE40UloVqOj8FIGoCJlIU:6GaeV/FakeOA8qOzGoCJlIU

Score
8/10
discoverypersistenceprivilege_escalation

Malware Config

Targets

    • Target

      aa8b1c36b49c08d3eb13cbb2986f582f_JaffaCakes118

    • Size

      92KB

    • MD5

      aa8b1c36b49c08d3eb13cbb2986f582f

    • SHA1

      284612291af905742cdc2ee01d3e42f5ed01ddc4

    • SHA256

      843b2f794cac39f6baa83a7eaf2c464acc65d6b05f3355017adb5999f1456ad5

    • SHA512

      2fb643a01bac7f37bb830e89721e10cafc2ade0e00e56091943efb73b4787819960b6fedfabf905d761e1e29dccf710c7d9c244a6c1f59137bea4242e7d09516

    • SSDEEP

      1536:lB+VUCs9+xW4xtneV/Xn1aJszjOVIQbE40UloVqOj8FIGoCJlIU:6GaeV/FakeOA8qOzGoCJlIU

    Score
    8/10
    discoverypersistenceprivilege_escalation

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks