Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

6

Static

static

3

aab3dd785e...18.exe

windows7-x64

6

aab3dd785e...18.exe

windows10-2004-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    aab3dd785e838056e7e8372c102579ce_JaffaCakes118

  • Size

    232KB

  • Sample

    240819-mwbrfstajq

  • MD5

    aab3dd785e838056e7e8372c102579ce

  • SHA1

    72f94e3b45cc58e61e337e893dbc5fafec87040a

  • SHA256

    69074df271a4c9b8314afbbb29a031b8441db44e4f78dab87b5d480271c39447

  • SHA512

    4a492cfcb7a2a7c48e816dd8b4566e6eab03a7266fc76ff2ee812ef587e73a5fafe3593c555a691559e3805e7254627550ad7aa530b356bc6510d6d08750a366

  • SSDEEP

    6144:5VSNGy9dLtWNm5UzuICgtanGPhtiJpAqbPAdbg:vSNNLtWN9Cg5P4bPA

Score
6/10
discoverypersistence

Malware Config

Targets

    • Target

      aab3dd785e838056e7e8372c102579ce_JaffaCakes118

    • Size

      232KB

    • MD5

      aab3dd785e838056e7e8372c102579ce

    • SHA1

      72f94e3b45cc58e61e337e893dbc5fafec87040a

    • SHA256

      69074df271a4c9b8314afbbb29a031b8441db44e4f78dab87b5d480271c39447

    • SHA512

      4a492cfcb7a2a7c48e816dd8b4566e6eab03a7266fc76ff2ee812ef587e73a5fafe3593c555a691559e3805e7254627550ad7aa530b356bc6510d6d08750a366

    • SSDEEP

      6144:5VSNGy9dLtWNm5UzuICgtanGPhtiJpAqbPAdbg:vSNNLtWN9Cg5P4bPA

    Score
    6/10
    discoverypersistence

    • Adds Run key to start application

      persistence

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks