Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

de23fbe269...18.exe

windows7-x64

10

de23fbe269...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    de23fbe2692ac84aa2ead8f93a6deac9_JaffaCakes118

  • Size

    132KB

  • Sample

    240913-lcpcrswcll

  • MD5

    de23fbe2692ac84aa2ead8f93a6deac9

  • SHA1

    8a81eb0c5f03109ffa95d3d2bc073b7cb01856a7

  • SHA256

    730c926d45ec56928009b2f7152f4fc99661bf577f36bced0e9e07c087efb143

  • SHA512

    f90bcc25eadfa6846114ec20dd16a4fb0b48311350be4e65864e3fea8f62eee8d95cf506e94ad68cca93985cd0b22c2e91da6cc58d05ef9e9fe6d61996c3241a

  • SSDEEP

    1536:vwWzZgYu9+7gWbrimfWSeJFzkRcTwdEQdIumgDL0FfxTGSGejUroD:vw5T8gWi2eJFzkRswUumgDLOfDGeAM

Score
10/10
discoveryevasionpersistence

Malware Config

Targets

    • Target

      de23fbe2692ac84aa2ead8f93a6deac9_JaffaCakes118

    • Size

      132KB

    • MD5

      de23fbe2692ac84aa2ead8f93a6deac9

    • SHA1

      8a81eb0c5f03109ffa95d3d2bc073b7cb01856a7

    • SHA256

      730c926d45ec56928009b2f7152f4fc99661bf577f36bced0e9e07c087efb143

    • SHA512

      f90bcc25eadfa6846114ec20dd16a4fb0b48311350be4e65864e3fea8f62eee8d95cf506e94ad68cca93985cd0b22c2e91da6cc58d05ef9e9fe6d61996c3241a

    • SSDEEP

      1536:vwWzZgYu9+7gWbrimfWSeJFzkRcTwdEQdIumgDL0FfxTGSGejUroD:vw5T8gWi2eJFzkRswUumgDLOfDGeAM

    Score
    10/10
    discoveryevasionpersistence

    • Modifies visiblity of hidden/system files in Explorer

      evasion

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks