Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

d7271b2cf9...18.exe

windows7-x64

10

d7271b2cf9...18.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d7271b2cf9005df230422f98849acc6e_JaffaCakes118

  • Size

    448KB

  • Sample

    240909-1q9cessbpl

  • MD5

    d7271b2cf9005df230422f98849acc6e

  • SHA1

    1e7fa517b93ddaaf2a6cb875c541d5c6dace65c1

  • SHA256

    5d173712cf7cb40b9f59af83b850110a532dbef3ba0e93fcea88216a07103895

  • SHA512

    1951adc7250773f4de4d8c7d4876994e4b5d04bc3c934a67ff8c3535d168a8ecabfffb9772ea9f4580a0ce4a7006ef8eeec21a8dfa4ad9df4d982760d72a6309

  • SSDEEP

    6144:WWTTFHlpa7zDJ3RI/36RbzBteHrJGPrF3qZxmmlC/4elTakX7gziEcbSPrcJmW:W+FHlGJS/36BzBt2gDhYP/elTHwc0

Score
10/10
discoveryevasionpersistencetrojan

Malware Config

Targets

    • Target

      d7271b2cf9005df230422f98849acc6e_JaffaCakes118

    • Size

      448KB

    • MD5

      d7271b2cf9005df230422f98849acc6e

    • SHA1

      1e7fa517b93ddaaf2a6cb875c541d5c6dace65c1

    • SHA256

      5d173712cf7cb40b9f59af83b850110a532dbef3ba0e93fcea88216a07103895

    • SHA512

      1951adc7250773f4de4d8c7d4876994e4b5d04bc3c934a67ff8c3535d168a8ecabfffb9772ea9f4580a0ce4a7006ef8eeec21a8dfa4ad9df4d982760d72a6309

    • SSDEEP

      6144:WWTTFHlpa7zDJ3RI/36RbzBteHrJGPrF3qZxmmlC/4elTakX7gziEcbSPrcJmW:W+FHlGJS/36BzBt2gDhYP/elTHwc0

    Score
    10/10
    discoveryevasionpersistencetrojan

    • Windows security bypass

      evasiontrojan

    • Disables taskbar notifications via registry modification

      evasion

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Windows security modification

      evasiontrojan

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks