Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

e22c699426...18.dll

windows7-x64

8

e22c699426...18.dll

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e22c69942658c0d8f4a2c6341017954a_JaffaCakes118

  • Size

    523KB

  • Sample

    240915-lgbmgaxdjk

  • MD5

    e22c69942658c0d8f4a2c6341017954a

  • SHA1

    352731a7a7419c27adc3f2816039ee620d430735

  • SHA256

    67395b3c39b8630e810e16c6ae65496d2be6a5f6d0b1793c0bb0466fefc294d2

  • SHA512

    603c580df35d297aa15144d17a537dba4668626ea9e6ccd9c77b124c620b326c7fddfb02ea392e4eb4512eddd8b323ef1340d29ce9ab87fff16b8c2a65d85aaf

  • SSDEEP

    384:UyVlNjtU2eF8ZZHJTEi6CJyltEWBfYFF4CCnbTrAzyq+14kLO:JVlzHr6sylmMkgcyq2

Score
8/10
adwarediscoverypersistenceprivilege_escalationstealer

Malware Config

Targets

    • Target

      e22c69942658c0d8f4a2c6341017954a_JaffaCakes118

    • Size

      523KB

    • MD5

      e22c69942658c0d8f4a2c6341017954a

    • SHA1

      352731a7a7419c27adc3f2816039ee620d430735

    • SHA256

      67395b3c39b8630e810e16c6ae65496d2be6a5f6d0b1793c0bb0466fefc294d2

    • SHA512

      603c580df35d297aa15144d17a537dba4668626ea9e6ccd9c77b124c620b326c7fddfb02ea392e4eb4512eddd8b323ef1340d29ce9ab87fff16b8c2a65d85aaf

    • SSDEEP

      384:UyVlNjtU2eF8ZZHJTEi6CJyltEWBfYFF4CCnbTrAzyq+14kLO:JVlzHr6sylmMkgcyq2

    Score
    8/10
    adwarediscoverypersistenceprivilege_escalationstealer

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

      stealeradware

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks