Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

d5a7a48736...18.exe

windows7-x64

10

d5a7a48736...18.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d5a7a487364e1bb2041c5888cce6a854_JaffaCakes118

  • Size

    392KB

  • Sample

    240909-e5bh2ssajj

  • MD5

    d5a7a487364e1bb2041c5888cce6a854

  • SHA1

    8dd8d372e9783517c329028a4ef512fdc3131fe7

  • SHA256

    a181b7292e484030729aa0d4bb098711723c672d4f287edc498c5344e544a820

  • SHA512

    bf9b0529b1532dc7d4947b5a7990e2ddb92798da9b82829e204afefa20e7361b1f9869cb9a34f818c89ce14d78995ce88214f6611968e8d199001186ed35a89c

  • SSDEEP

    6144:lMyUkqkFwzgVq767LkLbv1P/AxrvNCBeq0fG5bfAYSR6VbysZk1dWyRr3dZUoKNJ:cCJibvNYJbxYYgbRke6DDUz7

Score
10/10
discoveryevasionpersistencetrojan

Malware Config

Targets

    • Target

      d5a7a487364e1bb2041c5888cce6a854_JaffaCakes118

    • Size

      392KB

    • MD5

      d5a7a487364e1bb2041c5888cce6a854

    • SHA1

      8dd8d372e9783517c329028a4ef512fdc3131fe7

    • SHA256

      a181b7292e484030729aa0d4bb098711723c672d4f287edc498c5344e544a820

    • SHA512

      bf9b0529b1532dc7d4947b5a7990e2ddb92798da9b82829e204afefa20e7361b1f9869cb9a34f818c89ce14d78995ce88214f6611968e8d199001186ed35a89c

    • SSDEEP

      6144:lMyUkqkFwzgVq767LkLbv1P/AxrvNCBeq0fG5bfAYSR6VbysZk1dWyRr3dZUoKNJ:cCJibvNYJbxYYgbRke6DDUz7

    Score
    10/10
    discoveryevasionpersistencetrojan

    • Windows security bypass

      evasiontrojan

    • Disables taskbar notifications via registry modification

      evasion

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Windows security modification

      evasiontrojan

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks