Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

6

Static

static

3

d98a36df59...18.exe

windows7-x64

3

d98a36df59...18.exe

windows10-2004-x64

3

$PLUGINSDI...ll.dll

windows7-x64

3

$PLUGINSDI...ll.dll

windows10-2004-x64

3

$PLUGINSDI...lp.dll

windows7-x64

3

$PLUGINSDI...lp.dll

windows10-2004-x64

3

$PLUGINSDI...ce.dll

windows7-x64

3

$PLUGINSDI...ce.dll

windows10-2004-x64

3

$PLUGINSDIR/Setup.dll

windows7-x64

3

$PLUGINSDIR/Setup.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$PLUGINSDIR/inetc.dll

windows7-x64

3

$PLUGINSDIR/inetc.dll

windows10-2004-x64

3

bin/11.0.2...SA.exe

windows7-x64

6

bin/11.0.2...SA.exe

windows10-2004-x64

6

bin/11.0.2...AX.dll

windows7-x64

3

bin/11.0.2...AX.dll

windows10-2004-x64

3

bin/11.0.2...ok.dll

windows7-x64

3

bin/11.0.2...ok.dll

windows10-2004-x64

3

bin/11.0.2...er.exe

windows7-x64

3

bin/11.0.2...er.exe

windows10-2004-x64

3

bin/11.0.2...lp.dll

windows7-x64

3

bin/11.0.2...lp.dll

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    d98a36df594f2a5613d1b474485ec394_JaffaCakes118

  • Size

    582KB

  • Sample

    240911-d49h1s1epg

  • MD5

    d98a36df594f2a5613d1b474485ec394

  • SHA1

    65f0ec000dc231e0431baf5c6111b61344121403

  • SHA256

    ef1f15254dc7ffc3d1550eefecd3c9cf484e5eb16e83fca81afb06b45f46c266

  • SHA512

    fefacc1fe33419c09797cdad22c483a715f8c221c19c8b4088ceeb48b067ebb2a7e382a261b2b0b2f5dc5827c6fb69c1f036d3e5bec62b894db95c20b752248e

  • SSDEEP

    12288:NlmtMo0Bz9iY8VWRCeZuvW+x9oLuf1J+5QMRblpD5ohX7RMi:zo0BKWRCyL+x9oKf1JqQMJlpD27RR

Score
6/10
discovery

Malware Config

Targets

    • Target

      d98a36df594f2a5613d1b474485ec394_JaffaCakes118

    • Size

      582KB

    • MD5

      d98a36df594f2a5613d1b474485ec394

    • SHA1

      65f0ec000dc231e0431baf5c6111b61344121403

    • SHA256

      ef1f15254dc7ffc3d1550eefecd3c9cf484e5eb16e83fca81afb06b45f46c266

    • SHA512

      fefacc1fe33419c09797cdad22c483a715f8c221c19c8b4088ceeb48b067ebb2a7e382a261b2b0b2f5dc5827c6fb69c1f036d3e5bec62b894db95c20b752248e

    • SSDEEP

      12288:NlmtMo0Bz9iY8VWRCeZuvW+x9oLuf1J+5QMRblpD5ohX7RMi:zo0BKWRCyL+x9oKf1JqQMJlpD27RR

    Score
    3/10
    discovery
    behavioral1behavioral2

    • Target

      $PLUGINSDIR/Install.dll

    • Size

      237KB

    • MD5

      b193971d6d8885e05418c0730a0e21f8

    • SHA1

      7f3333c30cd2ea7a4223525776e1d74f74640d9d

    • SHA256

      2c4b83ba9afb7ee68de7c25fbf6627d312c4128f3078d09a67a5ce2981c3bc41

    • SHA512

      99fcba6a4d0503a5018a6d7adaa138a741063365d2dab4b240448d6d759f4264f0453f405fb691bbd7248eae4ff4a3b3b6e0672dabe429e4a00570af22d66dcf

    • SSDEEP

      3072:Udx1dB2+CCJJKRDi/bUnJXWZr0ge1GbPelZlXs6QmtiPZVF5l06UzIPe:Udx9JJFbeWLPelpdUZViI2

    Score
    3/10
    discovery
    behavioral3behavioral4

    • Target

      $PLUGINSDIR/LaunchHelp.dll

    • Size

      61KB

    • MD5

      2877e64cb1e195b36ac398b14b673b66

    • SHA1

      418cd5728e01554f4f3def01c50f0e63347b45b4

    • SHA256

      8240c3f0e43695f32a6ad969dc0dbd12721c697e66056d104bd4a265284bf85b

    • SHA512

      7fe87828f011229271c774cddd2bc9b3814a53451a5a2440ef9369032792c5b1a66578ad5547c5ec43c56d06049ff8455770d2a8957f0a3ceecdff59f9757dc2

    • SSDEEP

      768:TnBXbBAirLK4lnwD8R/t2Ymim5Tx54uhLibcy/Y:DZPdwDIVr05Vh+cyQ

    Score
    3/10
    discovery
    behavioral5behavioral6

    • Target

      $PLUGINSDIR/Resource.dll

    • Size

      197KB

    • MD5

      e651de347cd20c882a8c026151f70786

    • SHA1

      96a64c71ff035ba541197879e1e2a6582391035b

    • SHA256

      92e7927def8e11331e67a3ee2d951cfbfab341db4b31b4bc486270aa96762c0a

    • SHA512

      f8e6ef00e510292438e1ae7510849a542453e749337d29a22c497b5fcb3252a28e09ac721f4e38969151ca259e4bcec1ca996f9549408e4ec69b3f533b1649ee

    • SSDEEP

      3072:1lH6No1BHfNQThVy5mUZVG5JkVIM9OKrUC7R2:1laNLlVIlyM9OKQI2

    Score
    3/10
    discovery
    behavioral7behavioral8

    • Target

      $PLUGINSDIR/Setup.dll

    • Size

      97KB

    • MD5

      d3d75ec4578085c3c9d1abcfad692b4c

    • SHA1

      56f9903cc6e103b136635b62081207626fe1b9e3

    • SHA256

      996c276cc47c0361ebcd9d560e677c7b9cef7085c983de09aeed5199240254c6

    • SHA512

      afd6a493b766a233d55ea48710c1819786fbd410f0e791502be1f38c8c77e6efeedd497f58e89af8dd92ad1fca58586ec55f74f0fd812cd45799d6b3755d5e6c

    • SSDEEP

      1536:z8F1jkZ6MGOH8dJi367wDt0YCWylSvN3MIlXbzkMev5WB/E4+ch:YmN36xKZbG5WBv

    Score
    3/10
    discovery
    behavioral10behavioral9

    • Target

      $PLUGINSDIR/System.dll

    • Size

      10KB

    • MD5

      05e52213cfa17dee760186462a9645ed

    • SHA1

      f6d5e82080bbba65db7d54e89250c95af833aae3

    • SHA256

      d9d3ffa4c7d7a152f435f4777e72aa1b6a6c0555f277e59eedebc587c3b66ba5

    • SHA512

      586eea0bec6345b437667ce528bc2396427dd444a396456e38046a8962e92a52e7ee62b9f6c97f41bc1fb4a1b3905a302d6f7055e26b84e60709ba3b416ad172

    • SSDEEP

      192:GOShJI/rmOAIPkWpUybQ9WhP4t5Rwc89XbubZav5:X6OAOkWWycGP4XRwc2qFav5

    Score
    3/10
    discovery
    behavioral11behavioral12

    • Target

      $PLUGINSDIR/inetc.dll

    • Size

      72KB

    • MD5

      db6fa5497746c30f657d4f5273d4cf9d

    • SHA1

      097b939914f2f12f5cfb7648359d0c6d95deb0ae

    • SHA256

      c7d9989d927b4e0622983bb1fabe26d0c8a45c217b93f837e1855af76edb040a

    • SHA512

      75d19d6161ac4648855b197ff02e326bd4b751e00e3ebbbb054124af50f89827c0f7676ed7ef6f8613f0027e999720229e2ebac28f156e57993d83bc7f318558

    • SSDEEP

      768:wMWMshg75NF64QY04Xod0YmS4uYjHIyUg5luHT3W/Ipz6BTpeRpl/i5kUykfIq:washg44k44mnjHIigHTW/Ip0TpMy5/

    Score
    3/10
    discovery
    behavioral13behavioral14

    • Target

      bin/11.0.264.0/HBLiteSA.exe

    • Size

      751KB

    • MD5

      0c1dfcd68614aeaacb8c873e7f1a4553

    • SHA1

      d48e3b35f757ec954fc47e28dcdfb5f27a625771

    • SHA256

      47a3a5ff3188250f893ea70a9bc8922cead134519112b1ce618b2bdbd7bcb0d7

    • SHA512

      ebf9180fbf659b6999d89ba6469d7f0458acde811d9d095d4dacb3b31f7ad2d92db1a0916a2953daf4e7c8fb3f34adae5726dc3cb08a960a5118272ed8fe0449

    • SSDEEP

      12288:Cf9MQa5PJzYsFZH3M2neeHpziD5ZByjQXiG58T/JxZ:C+Q4PJ5FZH5neeHpzi3ByQiusxj

    Score
    6/10
    discovery

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral15behavioral16

    • Target

      bin/11.0.264.0/HBLiteSAAX.dll

    • Size

      309KB

    • MD5

      43530c2e30be20a560db358c5e6d2e29

    • SHA1

      48ec5c16fc5fbf4f50cb23dd6830bb7a78d3681b

    • SHA256

      21d984e9f8acdd6f51bccd464efe2c956ca406fc751ae0ff776cf11702d9ef92

    • SHA512

      515758e6445a257c576d53281e960415b46c0ebf66cb81998b927e270a5a296b3dae52ef57ff98204fc55b6c41dba6d12d2e5e9b61030a447479b647fe59bcbf

    • SSDEEP

      3072:YhwUll8wD9DPh8wfQCFFWQLNg8WqcrDXB2pAGxC4KKgFUizTjmI/+K63xiRSC5PW:YlBN9Wq2XkpASC7vOxipNWj

    Score
    3/10
    discovery
    behavioral17behavioral18

    • Target

      bin/11.0.264.0/HBLiteSAHook.dll

    • Size

      161KB

    • MD5

      55de9a2f549e8623e6d3a50d6b5fcad5

    • SHA1

      e76da4711c9f1645ff6c693d4223be59583bd6ee

    • SHA256

      f41b01a4af3752300db2464fc7809c6d07aa33eaf4d35aa6a4107e080a69cca8

    • SHA512

      89a05426816217eaf331ff9d2bc71a76716772b5f786ba10d487612370504e6735d9ef314adfdedf2bb8873d2f5fd5c0505f88aed1284c764af54d76c046337b

    • SSDEEP

      3072:Yxqe+1qMaH458Y22yBdtUiIBKSk05J5X/P48:YDtrPiNV/3

    Score
    3/10
    discovery
    behavioral19behavioral20

    • Target

      bin/11.0.264.0/HBLiteUninstaller.exe

    • Size

      51KB

    • MD5

      8e7a3291b813ae39b1ca163312814a2c

    • SHA1

      856105cda3356e682e4d3b4ff9f70136b5eed9e7

    • SHA256

      ba857facbd01dd75e427cf2726608d7e39302a86580efd25f94509b91c26316c

    • SHA512

      8092d02c35e66f38ba3a8e7084269c14d213321e70cb7b3270f18bf7fa340cf045b77231bb6bb1e5cf59e4b90de11c6dbae4b1b2c2d1e0a3da5d6fe55ec69314

    • SSDEEP

      768:eQSYaefDRwYxmDTR9RAdJF4cZqF86eWkJNetCZ9vYybCEC2+v4s346i8:rjae1wYxmBBoskJkYP/bCr731i8

    Score
    3/10
    discovery
    behavioral21behavioral22

    • Target

      bin/11.0.264.0/LaunchHelp.dll

    • Size

      61KB

    • MD5

      2877e64cb1e195b36ac398b14b673b66

    • SHA1

      418cd5728e01554f4f3def01c50f0e63347b45b4

    • SHA256

      8240c3f0e43695f32a6ad969dc0dbd12721c697e66056d104bd4a265284bf85b

    • SHA512

      7fe87828f011229271c774cddd2bc9b3814a53451a5a2440ef9369032792c5b1a66578ad5547c5ec43c56d06049ff8455770d2a8957f0a3ceecdff59f9757dc2

    • SSDEEP

      768:TnBXbBAirLK4lnwD8R/t2Ymim5Tx54uhLibcy/Y:DZPdwDIVr05Vh+cyQ

    Score
    3/10
    discovery
    behavioral23behavioral24

MITRE ATT&CK Enterprise v15

Tasks

static1

Score
3/10

behavioral1

discovery
Score
3/10

behavioral2

discovery
Score
3/10

behavioral3

discovery
Score
3/10

behavioral4

discovery
Score
3/10

behavioral5

discovery
Score
3/10

behavioral6

discovery
Score
3/10

behavioral7

discovery
Score
3/10

behavioral8

discovery
Score
3/10

behavioral9

discovery
Score
3/10

behavioral10

discovery
Score
3/10

behavioral11

discovery
Score
3/10

behavioral12

discovery
Score
3/10

behavioral13

discovery
Score
3/10

behavioral14

discovery
Score
3/10

behavioral15

discovery
Score
6/10

behavioral16

discovery
Score
6/10

behavioral17

discovery
Score
3/10

behavioral18

discovery
Score
3/10

behavioral19

discovery
Score
3/10

behavioral20

discovery
Score
3/10

behavioral21

discovery
Score
3/10

behavioral22

discovery
Score
3/10

behavioral23

discovery
Score
3/10

behavioral24

discovery
Score
3/10