Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

7

ebaca82ab5...18.exe

windows7-x64

7

ebaca82ab5...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ebaca82ab524cb1c0673d5753dc3c7e6_JaffaCakes118

  • Size

    4.7MB

  • Sample

    240919-tb19yaxdkl

  • MD5

    ebaca82ab524cb1c0673d5753dc3c7e6

  • SHA1

    316cb6324e231e6f107599349e4a06f216d23862

  • SHA256

    67ae41d8418e53971edf97847e0b1825e4cd0596161af72579354ca9b08a6c95

  • SHA512

    3c9791756c3dcd0d84df3bec2d5f47c7fce8b3b4d87d03e457ac616c7c6b19f0005d4f5ecfdaab4b985daeed8b921af2d288c67acf6036d9d75ce8f4ec796694

  • SSDEEP

    98304:YXfkMf4uBFeJ1QleIDHgbAfmQtPUpNCp5DORqMtaUljVUPXnCkyVtFN1MZa:+vQuneJ1QLHavQSpNCPD8qMQUlq4tFNr

Score
7/10
discoveryupx

Malware Config

Targets

    • Target

      ebaca82ab524cb1c0673d5753dc3c7e6_JaffaCakes118

    • Size

      4.7MB

    • MD5

      ebaca82ab524cb1c0673d5753dc3c7e6

    • SHA1

      316cb6324e231e6f107599349e4a06f216d23862

    • SHA256

      67ae41d8418e53971edf97847e0b1825e4cd0596161af72579354ca9b08a6c95

    • SHA512

      3c9791756c3dcd0d84df3bec2d5f47c7fce8b3b4d87d03e457ac616c7c6b19f0005d4f5ecfdaab4b985daeed8b921af2d288c67acf6036d9d75ce8f4ec796694

    • SSDEEP

      98304:YXfkMf4uBFeJ1QleIDHgbAfmQtPUpNCp5DORqMtaUljVUPXnCkyVtFN1MZa:+vQuneJ1QLHavQSpNCPD8qMQUlq4tFNr

    Score
    7/10
    discoveryupx

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Maps connected drives based on registry

      Disk information is often read in order to detect sandboxing environments.

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks