Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

e9ee6d7c87...18.exe

windows7-x64

7

e9ee6d7c87...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e9ee6d7c87924e2858225ea99164ad14_JaffaCakes118

  • Size

    176KB

  • Sample

    240918-zff3fssgpn

  • MD5

    e9ee6d7c87924e2858225ea99164ad14

  • SHA1

    1fd7be8a183e94394d0cf63c72df3afd7863319b

  • SHA256

    1aba614fd0961addeea90dd343edba348aa72c6b3717d4a346cf7db0135ede08

  • SHA512

    0402b55c4ce2e98d25cfb28804e3192343b1e15fa44e5de06344254760a64cfe9968d09fe4cc63cb653c4c4e5d3c932edf4b4436d1e9fbf52e5dcfd085311f06

  • SSDEEP

    3072:IEaEEkmqdQALvxNZPz58QUYMIN/c4ZrJEm/1wW9VSvCkLp2O2hpRqC:LnTKALvxrF8QUYtuwdVv4H8bb

Score
7/10
discovery

Malware Config

Targets

    • Target

      e9ee6d7c87924e2858225ea99164ad14_JaffaCakes118

    • Size

      176KB

    • MD5

      e9ee6d7c87924e2858225ea99164ad14

    • SHA1

      1fd7be8a183e94394d0cf63c72df3afd7863319b

    • SHA256

      1aba614fd0961addeea90dd343edba348aa72c6b3717d4a346cf7db0135ede08

    • SHA512

      0402b55c4ce2e98d25cfb28804e3192343b1e15fa44e5de06344254760a64cfe9968d09fe4cc63cb653c4c4e5d3c932edf4b4436d1e9fbf52e5dcfd085311f06

    • SSDEEP

      3072:IEaEEkmqdQALvxNZPz58QUYMIN/c4ZrJEm/1wW9VSvCkLp2O2hpRqC:LnTKALvxrF8QUYtuwdVv4H8bb

    Score
    7/10
    discovery

    • Deletes itself

    • Executes dropped EXE

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • Drops desktop.ini file(s)

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks