Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

eabfce3f7d...18.exe

windows7-x64

eabfce3f7d...18.exe

windows10-2004-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    eabfce3f7d62583af84dd0b178e82704_JaffaCakes118

  • Size

    92KB

  • Sample

    240919-g4dywsveqn

  • MD5

    eabfce3f7d62583af84dd0b178e82704

  • SHA1

    89cd7f71f5faa3fd6f107684485e9a6535abcbb1

  • SHA256

    65b724f8157410cab232b085d40c5435b41954fc20a83a671dc5a67b11ebe57e

  • SHA512

    c6bb84d6cb08895a4d9802401ad0c43ccd7979b2d0c6acbd24d78315f25330b9cc19aef167e6d3c52c535228300600f30290c8ab1489825b42e048f620b86585

  • SSDEEP

    1536:a9NjZVgvfttsfUsdG7cJ3AgwRn4eDu2bCwNNM3KTgMNAEhEacLfHwzGo:aLov3B3QYRn4eDu2bC0p7yacszGo

Score
8/10
discoverypersistenceprivilege_escalation

Malware Config

Targets

    • Target

      eabfce3f7d62583af84dd0b178e82704_JaffaCakes118

    • Size

      92KB

    • MD5

      eabfce3f7d62583af84dd0b178e82704

    • SHA1

      89cd7f71f5faa3fd6f107684485e9a6535abcbb1

    • SHA256

      65b724f8157410cab232b085d40c5435b41954fc20a83a671dc5a67b11ebe57e

    • SHA512

      c6bb84d6cb08895a4d9802401ad0c43ccd7979b2d0c6acbd24d78315f25330b9cc19aef167e6d3c52c535228300600f30290c8ab1489825b42e048f620b86585

    • SSDEEP

      1536:a9NjZVgvfttsfUsdG7cJ3AgwRn4eDu2bCwNNM3KTgMNAEhEacLfHwzGo:aLov3B3QYRn4eDu2bC0p7yacszGo

    Score
    8/10
    discoverypersistenceprivilege_escalation

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks