Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

ec000c3ea2...18.exe

windows7-x64

7

ec000c3ea2...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ec000c3ea2d185058380c6d9e4b3fdeb_JaffaCakes118

  • Size

    332KB

  • Sample

    240919-xqw6bavena

  • MD5

    ec000c3ea2d185058380c6d9e4b3fdeb

  • SHA1

    87e4a084f5fba422aa333852f505ad9935f8a93a

  • SHA256

    98c3fbc5dcc2af30bd55461d814af8ae8f8a8b4004947fa30ec32c4fd757f6a8

  • SHA512

    d15c6b29a4a2512843c744977f6ccdda882bc97622cdd99331147392f0b2426c16eb84473e6d439cfdbb00365fb0d9851f45dae3d1533e5d906eb39d95fa8145

  • SSDEEP

    6144:GOx7LCSMFgLCeHUlOzO3HaFeA9wV4eSEMgf/xig7kZ0TQSdQTC8aZ:BExgLkloadWwVYvg7vcuQ1

Score
7/10
discoverypersistenceupx

Malware Config

Targets

    • Target

      ec000c3ea2d185058380c6d9e4b3fdeb_JaffaCakes118

    • Size

      332KB

    • MD5

      ec000c3ea2d185058380c6d9e4b3fdeb

    • SHA1

      87e4a084f5fba422aa333852f505ad9935f8a93a

    • SHA256

      98c3fbc5dcc2af30bd55461d814af8ae8f8a8b4004947fa30ec32c4fd757f6a8

    • SHA512

      d15c6b29a4a2512843c744977f6ccdda882bc97622cdd99331147392f0b2426c16eb84473e6d439cfdbb00365fb0d9851f45dae3d1533e5d906eb39d95fa8145

    • SSDEEP

      6144:GOx7LCSMFgLCeHUlOzO3HaFeA9wV4eSEMgf/xig7kZ0TQSdQTC8aZ:BExgLkloadWwVYvg7vcuQ1

    Score
    7/10
    discoverypersistenceupx

    • Deletes itself

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks