Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

dca283e33b...18.exe

windows7-x64

10

dca283e33b...18.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    dca283e33b771c8bfd597ab00225a01b_JaffaCakes118

  • Size

    408KB

  • Sample

    240912-t8mstatgpn

  • MD5

    dca283e33b771c8bfd597ab00225a01b

  • SHA1

    ea01e6d74ef4e0d9bdf94b4de7bca188c6c060f0

  • SHA256

    2fd676130a2d711e98a1b35b0264db08c4b55e498be5a90aee207506856ac293

  • SHA512

    2cba067c3c1fe91b51c8fe7c9ba908543ac3b8bc90c4f58fc34d52f1c0727b53bebfc1da0c21e3705d53cf9fbf1c38b32a908feac05903a63e5a3395b9223d16

  • SSDEEP

    6144:4jijWrOgGksNQyd8D+uBoyMkE+UqsIAqJfyU/WtjLvsbxrYNbu/64skdvabu6:42gBy26uB+kHZbJluO9rYNfkAS

Score
10/10
discoveryevasionpersistencetrojan

Malware Config

Targets

    • Target

      dca283e33b771c8bfd597ab00225a01b_JaffaCakes118

    • Size

      408KB

    • MD5

      dca283e33b771c8bfd597ab00225a01b

    • SHA1

      ea01e6d74ef4e0d9bdf94b4de7bca188c6c060f0

    • SHA256

      2fd676130a2d711e98a1b35b0264db08c4b55e498be5a90aee207506856ac293

    • SHA512

      2cba067c3c1fe91b51c8fe7c9ba908543ac3b8bc90c4f58fc34d52f1c0727b53bebfc1da0c21e3705d53cf9fbf1c38b32a908feac05903a63e5a3395b9223d16

    • SSDEEP

      6144:4jijWrOgGksNQyd8D+uBoyMkE+UqsIAqJfyU/WtjLvsbxrYNbu/64skdvabu6:42gBy26uB+kHZbJluO9rYNfkAS

    Score
    10/10
    discoveryevasionpersistencetrojan

    • Windows security bypass

      evasiontrojan

    • Disables taskbar notifications via registry modification

      evasion

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • Windows security modification

      evasiontrojan

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks