Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

ec1b3654cb...18.exe

windows7-x64

7

ec1b3654cb...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ec1b3654cb808f2f4b36c3b9f4622772_JaffaCakes118

  • Size

    391KB

  • Sample

    240919-ywlgfaxhkb

  • MD5

    ec1b3654cb808f2f4b36c3b9f4622772

  • SHA1

    96c9e4181b6e392824b06d6a650a1ad4cd438f7c

  • SHA256

    4410aecc2461c0926a7cac62ae28de9dac9b06fb3c638bf850072be0bfb71962

  • SHA512

    7a655bb658b0f072dc15178dcc82c2a49ff0fa4834ee5d50a26ab65d7fbeba18f817a4e9b74a9dcd794cd8117d4b11c8ad571c2c93a16a3c20dca0a8d128b4f5

  • SSDEEP

    12288:ux1/tk/ufkK5UcHForBSWNG8dLxJGCdjW0:u7/6uDmcHForB9hdL7x

Score
7/10
discoverypersistence

Malware Config

Targets

    • Target

      ec1b3654cb808f2f4b36c3b9f4622772_JaffaCakes118

    • Size

      391KB

    • MD5

      ec1b3654cb808f2f4b36c3b9f4622772

    • SHA1

      96c9e4181b6e392824b06d6a650a1ad4cd438f7c

    • SHA256

      4410aecc2461c0926a7cac62ae28de9dac9b06fb3c638bf850072be0bfb71962

    • SHA512

      7a655bb658b0f072dc15178dcc82c2a49ff0fa4834ee5d50a26ab65d7fbeba18f817a4e9b74a9dcd794cd8117d4b11c8ad571c2c93a16a3c20dca0a8d128b4f5

    • SSDEEP

      12288:ux1/tk/ufkK5UcHForBSWNG8dLxJGCdjW0:u7/6uDmcHForB9hdL7x

    Score
    7/10
    discoverypersistence

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks