Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

aee0b5e036...18.exe

windows7-x64

10

aee0b5e036...18.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    aee0b5e0368122971a55f5c4d29f5ea9_JaffaCakes118

  • Size

    432KB

  • Sample

    240820-mknlwawhqc

  • MD5

    aee0b5e0368122971a55f5c4d29f5ea9

  • SHA1

    6a62b764b1616183beb6fee5f6e96c10897f342f

  • SHA256

    f19170c4947acd911a3af53cdecbc78a5b268200033e8bedafab376e51db886a

  • SHA512

    d29feb24c0a19fc3eedca574f35191795e93f37859aa76163ef08c145c52197875da0c5a46f860ce459851b7c85eee248a66755649840203778b505ce3a7872b

  • SSDEEP

    6144:qR39vKgjiZSP1XlTTaKuasQY+RG+6FcI3ajLdypDR8UJ4Vryyi5DdwG6fPCidO8t:qRhFKoTuT+qFudypt9O5OkPCiH6P

Score
10/10
discoveryevasionpersistencetrojan

Malware Config

Targets

    • Target

      aee0b5e0368122971a55f5c4d29f5ea9_JaffaCakes118

    • Size

      432KB

    • MD5

      aee0b5e0368122971a55f5c4d29f5ea9

    • SHA1

      6a62b764b1616183beb6fee5f6e96c10897f342f

    • SHA256

      f19170c4947acd911a3af53cdecbc78a5b268200033e8bedafab376e51db886a

    • SHA512

      d29feb24c0a19fc3eedca574f35191795e93f37859aa76163ef08c145c52197875da0c5a46f860ce459851b7c85eee248a66755649840203778b505ce3a7872b

    • SSDEEP

      6144:qR39vKgjiZSP1XlTTaKuasQY+RG+6FcI3ajLdypDR8UJ4Vryyi5DdwG6fPCidO8t:qRhFKoTuT+qFudypt9O5OkPCiH6P

    Score
    10/10
    discoveryevasionpersistencetrojan

    • Windows security bypass

      evasiontrojan

    • Disables taskbar notifications via registry modification

      evasion

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Windows security modification

      evasiontrojan

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks