Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

be23ca84c7...18.exe

windows7-x64

7

be23ca84c7...18.exe

windows10-2004-x64

7

$PLUGINSDIR/InetC.dll

windows7-x64

3

$PLUGINSDIR/InetC.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDI...om.dll

windows7-x64

3

$PLUGINSDI...om.dll

windows10-2004-x64

3

$PLUGINSDI...ec.dll

windows7-x64

3

$PLUGINSDI...ec.dll

windows10-2004-x64

3

$PLUGINSDI...ON.dll

windows7-x64

3

$PLUGINSDI...ON.dll

windows10-2004-x64

3

$PLUGINSDI...Js.dll

windows7-x64

3

$PLUGINSDI...Js.dll

windows10-2004-x64

3

$PLUGINSDI...ls.dll

windows7-x64

3

$PLUGINSDI...ls.dll

windows10-2004-x64

3

$PLUGINSDIR/nsZip.dll

windows7-x64

3

$PLUGINSDIR/nsZip.dll

windows10-2004-x64

3

Chrome/CT1...yer.js

windows7-x64

3

Chrome/CT1...yer.js

windows10-2004-x64

3

Chrome/CT1...ack.js

windows7-x64

3

Chrome/CT1...ack.js

windows10-2004-x64

3

Chrome/CT1...ont.js

windows7-x64

3

Chrome/CT1...ont.js

windows10-2004-x64

3

Chrome/CT1...ger.js

windows7-x64

3

Chrome/CT1...ger.js

windows10-2004-x64

3

Chrome/CT1...ete.js

windows7-x64

3

Chrome/CT1...ete.js

windows10-2004-x64

3

Chrome/CT1...ion.js

windows7-x64

3

Chrome/CT1...ion.js

windows10-2004-x64

3

Chrome/CT1...g.html

windows7-x64

3

Chrome/CT1...g.html

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    be23ca84c770caba266a752ef659fbe2_JaffaCakes118

  • Size

    2.8MB

  • Sample

    240824-jaaeqazbke

  • MD5

    be23ca84c770caba266a752ef659fbe2

  • SHA1

    24f070cc1050901e56da6e8ce30a9fc51979c789

  • SHA256

    0608199328a6a99f873f7ac2b24e3dae6360b7eb6d2126f65b9571fc20437c24

  • SHA512

    a2bb0b83699b26e8afeabee1fbc9d95123584cd21aeeb5dcaca3b0bf7356cf437b2e80767f4359d0ae23dc056237d6cbb330ea28031e0100ab978891246f07d1

  • SSDEEP

    49152:g7OKtQuwOTN2nuqnKZ1UFxalg+q7tlb4Wd2/FRZxY2wdHqfcxtVgq:gvaujeuiK+2Xq3b4Wk8PdH6cx

Score
7/10
discoveryexecutionspywarestealer

Malware Config

Targets

    • Target

      be23ca84c770caba266a752ef659fbe2_JaffaCakes118

    • Size

      2.8MB

    • MD5

      be23ca84c770caba266a752ef659fbe2

    • SHA1

      24f070cc1050901e56da6e8ce30a9fc51979c789

    • SHA256

      0608199328a6a99f873f7ac2b24e3dae6360b7eb6d2126f65b9571fc20437c24

    • SHA512

      a2bb0b83699b26e8afeabee1fbc9d95123584cd21aeeb5dcaca3b0bf7356cf437b2e80767f4359d0ae23dc056237d6cbb330ea28031e0100ab978891246f07d1

    • SSDEEP

      49152:g7OKtQuwOTN2nuqnKZ1UFxalg+q7tlb4Wd2/FRZxY2wdHqfcxtVgq:gvaujeuiK+2Xq3b4Wk8PdH6cx

    Score
    7/10
    discoveryspywarestealer

    • Loads dropped DLL

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer
    behavioral1behavioral2

    • Target

      $PLUGINSDIR/InetC.dll

    • Size

      23KB

    • MD5

      7760daf1b6a7f13f06b25b5a09137ca1

    • SHA1

      cc5a98ea3aa582de5428c819731e1faeccfcf33a

    • SHA256

      5233110ed8e95a4a1042f57d9b2dc72bc253e8cb5282437637a51e4e9fcb9079

    • SHA512

      d038bea292ffa2f2f44c85305350645d504be5c45a9d1b30db6d9708bfac27e2ff1e41a76c844d9231d465f31d502a5313dfded6309326d6dfbe30e51a76fdb5

    • SSDEEP

      384:l4Z8sUAUNuGGsPVPEZ+OLkCnFJDhgvZwcRa9h9S4y4fO:lG8sUAUnt88CFJDhmajMA

    Score
    3/10
    discovery
    behavioral3behavioral4

    • Target

      $PLUGINSDIR/System.dll

    • Size

      11KB

    • MD5

      bf712f32249029466fa86756f5546950

    • SHA1

      75ac4dc4808ac148ddd78f6b89a51afbd4091c2e

    • SHA256

      7851cb12fa4131f1fee5de390d650ef65cac561279f1cfe70ad16cc9780210af

    • SHA512

      13f69959b28416e0b8811c962a49309dca3f048a165457051a28a3eb51377dcaf99a15e86d7eee8f867a9e25ecf8c44da370ac8f530eeae7b5252eaba64b96f4

    • SSDEEP

      192:0N2gQuUwXzioj4KALV2upWzVd7q1QDXEbBZ8KxHdGzyS/Kx:rJoiO8V2upW7vQjS/

    Score
    3/10
    discovery
    behavioral5behavioral6

    • Target

      $PLUGINSDIR/nsCRandom.dll

    • Size

      145KB

    • MD5

      9ad78702635cd2f0ed3433628454fecd

    • SHA1

      c786a3cb7ff21214c04299ffc37e4f9852afe6bb

    • SHA256

      673d8ffba022c8196129d537973ad18049192f5cdeffd027ee743e2a6f7e1c85

    • SHA512

      1a15155057cece9e5600e3a446a7f25a91c7caff8b99ac995566cff18edde956789a2c549748aa267802111137fb5fb60e2aafa077caf06df060361274745398

    • SSDEEP

      3072:U0UZ9QhEcLhkKjc/sQcltvnJGUhVma813zsKn9:U0UqLCKwDcHJBhVmNwc

    Score
    3/10
    discovery
    behavioral7behavioral8

    • Target

      $PLUGINSDIR/nsExec.dll

    • Size

      6KB

    • MD5

      132e6153717a7f9710dcea4536f364cd

    • SHA1

      e39bc82c7602e6dd0797115c2bd12e872a5fb2ab

    • SHA256

      d29afce2588d8dd7bb94c00ca91cac0e85b80ffa6b221f5ffcb83a2497228eb2

    • SHA512

      9aeb0b3051ce07fb9f03dfee7cea4a5e423425e48cb538173bd2a167817f867a30bd4d27d07875f27ca00031745b24547030b7f146660b049fa717590f1c77e1

    • SSDEEP

      96:M/SspqrIYxLPEQhThvov3TE4/2Sa5P9QFFYzOx4uF3sbSEI5LP39sQvM:M/QUG7lhvov36S5FcUjliSEI5LuQ

    Score
    3/10
    discovery
    behavioral10behavioral9

    • Target

      $PLUGINSDIR/nsJSON.dll

    • Size

      87KB

    • MD5

      bedcf010d3e92c6cbc30fb8ea67abe1f

    • SHA1

      4cc451f8d84913cfbaca0286f4b415c841221d4b

    • SHA256

      50094ae30fd6c741ae051c2d6d09a0af957caf5d48fa96f232f9279e7ded2103

    • SHA512

      8394b57aa401767f259f2ba14ddc17e4ac022f7e6f392d790e3466b0a2801a210a71182abaf6cc5fc8d160ef79ba20b27930dc33763b9db497293e52ca52f38d

    • SSDEEP

      1536:HPVu+gCQU5uSIrNSLcbI471sPEUOV3gak0m+gPwEw:HPVzVlI4isPuV3gOm7PwE

    Score
    3/10
    discovery
    behavioral11behavioral12

    • Target

      $PLUGINSDIR/nsPrefsJs.dll

    • Size

      169KB

    • MD5

      947cf03bd51a4644cb8e59221485343e

    • SHA1

      4edb9082cda4834f3b08a501e75e21a430197dca

    • SHA256

      23e4665fa2ac4434aa623b8818d478fd7e30b3a9fcb7ee43027b4c1771082ef1

    • SHA512

      6fad92247cbfdf623446f2b06671888d71f1cb23521e6de0fffb9fb56663d51e38946eb2958c2b5462f5bbb5ec999a6ab5ce5b0d46005b82f065863b187d8239

    • SSDEEP

      3072:b9QQP5OJY09xV7P0mqWynqxezgMN/vj6r1rmiNVyqnmqwxBRQ:9OJY09DQtBqUzl3j6r1rJy8

    Score
    3/10
    discovery
    behavioral13behavioral14

    • Target

      $PLUGINSDIR/nsUtils.dll

    • Size

      340KB

    • MD5

      e34567b8e1dccb066ccd0173d5818498

    • SHA1

      3ce6f07c3c06bb89d6b422062cff9dc66f13f856

    • SHA256

      ffd585c14f96f869f3c3ce6d0a2d47bc0a2575c02bde9d4057bf7fa5fa81c6aa

    • SHA512

      dcac041914f7ebaa96ced5672752726709155bb8f8709f2ec215e66de7163e2496f3d73a5c9ef431668f814b633182012f728f099771462a8558e34acc3498c4

    • SSDEEP

      6144:LOByXPksB8OI7vFJ68tQc907NsEGt00EVu:LOByXMsxI7tU8tQnGDEVu

    Score
    3/10
    discovery
    behavioral15behavioral16

    • Target

      $PLUGINSDIR/nsZip.dll

    • Size

      196KB

    • MD5

      977d7686d7a04135444542fdc1e7c13a

    • SHA1

      a171f9ef1eb96ca91225ea26468c1023939a5c14

    • SHA256

      4274ea4a094ebb9eb54046c95488460afb0097d0565b8eae4fbfce981706f0cd

    • SHA512

      4f3bef13aa1d1f57624385dfaccc4ecce201c235ba2d2d451f469d39ef5285afdd57249c7dc5a6538253ea8f7cda25964abc1eb041715730d2626694667ee4f5

    • SSDEEP

      3072:Fjz9Qc2nEKRrU0ZEdAL6Emb8x0AqUGrpAMkYrUuR8V/cgP2F8PAz:F9RKRrT6OtY8q3xkBU8V/cgd

    Score
    3/10
    discovery
    behavioral17behavioral18

    • Target

      Chrome/CT1060933/content/AbstractionLayer.js

    • Size

      41KB

    • MD5

      b62c124011a3322104e6bd3868ce0c52

    • SHA1

      df9fd920823d1d9009894e6c8c16f127389c8e2d

    • SHA256

      2d74cf770a672d436ea6fe87c8f88f8fc4baa9a7c64f5577ed7547566b03aa4b

    • SHA512

      5a8b08e468bdb5652cf0677a98fc4829034ae26822f8417cde2e60bbaa4a0ecdceecbb49984d8a3a9b3f229d6fcddcdfd512cee11d81fe5adda18258ffec2a04

    • SSDEEP

      768:biZAPc0R4YA3OtWEN+p93vVxB3LIsdfYSY8HjKysB5akl68RWYQkxYdTW32k84Uw:ypJAqtny

    Score
    3/10
    execution
    behavioral19behavioral20

    • Target

      Chrome/CT1060933/content/AbstractionLayerBack.js

    • Size

      41KB

    • MD5

      b62c124011a3322104e6bd3868ce0c52

    • SHA1

      df9fd920823d1d9009894e6c8c16f127389c8e2d

    • SHA256

      2d74cf770a672d436ea6fe87c8f88f8fc4baa9a7c64f5577ed7547566b03aa4b

    • SHA512

      5a8b08e468bdb5652cf0677a98fc4829034ae26822f8417cde2e60bbaa4a0ecdceecbb49984d8a3a9b3f229d6fcddcdfd512cee11d81fe5adda18258ffec2a04

    • SSDEEP

      768:biZAPc0R4YA3OtWEN+p93vVxB3LIsdfYSY8HjKysB5akl68RWYQkxYdTW32k84Uw:ypJAqtny

    Score
    3/10
    execution
    behavioral21behavioral22

    • Target

      Chrome/CT1060933/content/AbstractionLayerFront.js

    • Size

      41KB

    • MD5

      b62c124011a3322104e6bd3868ce0c52

    • SHA1

      df9fd920823d1d9009894e6c8c16f127389c8e2d

    • SHA256

      2d74cf770a672d436ea6fe87c8f88f8fc4baa9a7c64f5577ed7547566b03aa4b

    • SHA512

      5a8b08e468bdb5652cf0677a98fc4829034ae26822f8417cde2e60bbaa4a0ecdceecbb49984d8a3a9b3f229d6fcddcdfd512cee11d81fe5adda18258ffec2a04

    • SSDEEP

      768:biZAPc0R4YA3OtWEN+p93vVxB3LIsdfYSY8HjKysB5akl68RWYQkxYdTW32k84Uw:ypJAqtny

    Score
    3/10
    execution
    behavioral23behavioral24

    • Target

      Chrome/CT1060933/content/BrowserContextMenuManager.js

    • Size

      2KB

    • MD5

      ac9000920fd35b6bfec978730af34dbd

    • SHA1

      baae138194b00ef41da0948867cd939cef09352e

    • SHA256

      372fca5f4550052ba395f637f04029f47eca76ca368a407115a6c125042106e0

    • SHA512

      ca4b1c0d929b683ff943e290a2f2364dbcabd0fc49f43d9e499d96e3f5808d20bf4bc4e564e4757d4fe7eb84090746a0442d2a94253079eccba84e4435e24f16

    Score
    3/10
    execution
    behavioral25behavioral26

    • Target

      Chrome/CT1060933/content/logic/autoComplete.js

    • Size

      9KB

    • MD5

      cbc02cdf231de16146c984fa3cbaaafb

    • SHA1

      387a1ba061e7a0c824fab1993da0a2820bfc3f4e

    • SHA256

      00dbf894d4edaec262b710f4f201b9a6a30c1ecd17fd8c4fb52c5191f9fe4704

    • SHA512

      3863a7319dbf8cfab26a4834d8575d053fa4924c0be98a0f1e071cfad7e5ef1cf5442bb36dfd6cb269118e5fb29363e9354b12946075f342cc5a4634dd45d9f7

    • SSDEEP

      192:n0hI+DdE4ppTHS845pEoNVXKk0ATmyuZTZZfx0nyS7:I1DdE4SNlkNE

    Score
    3/10
    execution
    behavioral27behavioral28

    • Target

      Chrome/CT1060933/content/logic/priceGongMigration.js

    • Size

      22KB

    • MD5

      25e3686e1228d27ed245f7dc0b524d40

    • SHA1

      b553539d2854c296e121a41cafc1e8dac733d716

    • SHA256

      df5f94c20ce87180376620d75af72e09f523386fd81f99eff92aa2ed66e20899

    • SHA512

      12ebde9dc11bfd9b6ec19a46030d2bf51dd7cd139ff0ccf38869527488c536ee1b8bfb29ed24ef4eb17ccc07394b82d92697a04a406eb3dbdeeffd688d68f19c

    • SSDEEP

      384:5PX+F0P6HxDIHY9rMyMASynkbAF0H38QnaSXLUwKu07iJl8MsNFvq3TD8yW510eU:VX+FUEIHY9rMyMASynkbAF0H38QnaSXt

    Score
    3/10
    execution
    behavioral29behavioral30

    • Target

      Chrome/CT1060933/content/logic/uninstall/dialog/MozillaRetentionDialog.html

    • Size

      2KB

    • MD5

      a7d99efbf1a3666f0e3dbefec24b6efb

    • SHA1

      62fb8703732755c0a585144e6c41c02bdf53d997

    • SHA256

      7270298562f9181e8614df6e5b66c39ce41b3e4330ab1257490b8fa13b8d08f6

    • SHA512

      04ac54d33843964556897262528eb6147d0e2bc654aa9e90c9adba9a553034f52a8cc1da79a1215dc47b5e4ebc4d7578d7c79099d04794df8505df3fa878732d

    Score
    3/10
    discovery
    behavioral31behavioral32

MITRE ATT&CK Enterprise v15

Tasks

static1

Score
3/10

behavioral1

discoveryspywarestealer
Score
7/10

behavioral2

discoveryspywarestealer
Score
7/10

behavioral3

discovery
Score
3/10

behavioral4

discovery
Score
3/10

behavioral5

discovery
Score
3/10

behavioral6

discovery
Score
3/10

behavioral7

discovery
Score
3/10

behavioral8

discovery
Score
3/10

behavioral9

discovery
Score
3/10

behavioral10

discovery
Score
3/10

behavioral11

discovery
Score
3/10

behavioral12

discovery
Score
3/10

behavioral13

discovery
Score
3/10

behavioral14

discovery
Score
3/10

behavioral15

discovery
Score
3/10

behavioral16

discovery
Score
3/10

behavioral17

discovery
Score
3/10

behavioral18

discovery
Score
3/10

behavioral19

execution
Score
3/10

behavioral20

execution
Score
3/10

behavioral21

execution
Score
3/10

behavioral22

execution
Score
3/10

behavioral23

execution
Score
3/10

behavioral24

execution
Score
3/10

behavioral25

execution
Score
3/10

behavioral26

execution
Score
3/10

behavioral27

execution
Score
3/10

behavioral28

execution
Score
3/10

behavioral29

execution
Score
3/10

behavioral30

execution
Score
3/10

behavioral31

discovery
Score
3/10

behavioral32

discovery
Score
3/10