Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

d0f1e15804...18.dll

windows7-x64

8

d0f1e15804...18.dll

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d0f1e15804a02307156f2e5d208622ea_JaffaCakes118

  • Size

    36KB

  • Sample

    240907-dk7v3s1hnk

  • MD5

    d0f1e15804a02307156f2e5d208622ea

  • SHA1

    41265e462e3ec83236ba345c3da5420fd6d8adb1

  • SHA256

    5d2e6ed050c18731d2e72a5ce25ec5ee3e2b0363f9833e8c4f10f74ff525e015

  • SHA512

    88c8c9737bf544758f5ff39b0d2df6c9a130cb419ce5a64e151a99e4d78bf17ab96bf02227c16cfce907a2dd012c786682303237443ff37ea2698209a12cea2b

  • SSDEEP

    768:Yt8dldJN5LXcyXrCD1tDMByGqnXm3+AVWEvaLW:DdzcyXrC/GsnXiVWEvaLW

Score
8/10
discoverypersistenceprivilege_escalation

Malware Config

Targets

    • Target

      d0f1e15804a02307156f2e5d208622ea_JaffaCakes118

    • Size

      36KB

    • MD5

      d0f1e15804a02307156f2e5d208622ea

    • SHA1

      41265e462e3ec83236ba345c3da5420fd6d8adb1

    • SHA256

      5d2e6ed050c18731d2e72a5ce25ec5ee3e2b0363f9833e8c4f10f74ff525e015

    • SHA512

      88c8c9737bf544758f5ff39b0d2df6c9a130cb419ce5a64e151a99e4d78bf17ab96bf02227c16cfce907a2dd012c786682303237443ff37ea2698209a12cea2b

    • SSDEEP

      768:Yt8dldJN5LXcyXrCD1tDMByGqnXm3+AVWEvaLW:DdzcyXrC/GsnXiVWEvaLW

    Score
    8/10
    discoverypersistenceprivilege_escalation

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks