Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

b1cab75411...18.exe

windows7-x64

b1cab75411...18.exe

windows10-2004-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    b1cab75411a033559212bebffb42d2f9_JaffaCakes118

  • Size

    92KB

  • Sample

    240821-czw7fswclc

  • MD5

    b1cab75411a033559212bebffb42d2f9

  • SHA1

    82fa50fb69e4b7109f69fca69520c56f27b4465d

  • SHA256

    8fe36712e7a412d48cf5060dada0e3c5cfecc3b0e4ba10262b19eafdb78bcd89

  • SHA512

    7aba1aee10271bd5f84b4500ab7a854d5cb9cfeee7c41e31c266ff88598c70f933862d0246470bb69b64c48faa0c36e614fbf8644e43d5d79e4646229840f83b

  • SSDEEP

    1536:l/mu/+7Kre9rrwnRQHCJ0WSn8OQu6Ne0syBVnhNCuhUk1sTLzMo:l/fm2eVEnRtJ0WS8I6Ne0PSKsPzMo

Score
8/10
discoverypersistenceprivilege_escalation

Malware Config

Targets

    • Target

      b1cab75411a033559212bebffb42d2f9_JaffaCakes118

    • Size

      92KB

    • MD5

      b1cab75411a033559212bebffb42d2f9

    • SHA1

      82fa50fb69e4b7109f69fca69520c56f27b4465d

    • SHA256

      8fe36712e7a412d48cf5060dada0e3c5cfecc3b0e4ba10262b19eafdb78bcd89

    • SHA512

      7aba1aee10271bd5f84b4500ab7a854d5cb9cfeee7c41e31c266ff88598c70f933862d0246470bb69b64c48faa0c36e614fbf8644e43d5d79e4646229840f83b

    • SSDEEP

      1536:l/mu/+7Kre9rrwnRQHCJ0WSn8OQu6Ne0syBVnhNCuhUk1sTLzMo:l/fm2eVEnRtJ0WS8I6Ne0PSKsPzMo

    Score
    8/10
    discoverypersistenceprivilege_escalation

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks