Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

ef1a0e3331...18.exe

windows7-x64

7

ef1a0e3331...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    ef1a0e3331d4326c83f6838f9af96b1d_JaffaCakes118

  • Size

    25KB

  • Sample

    240921-fjlybswcrp

  • MD5

    ef1a0e3331d4326c83f6838f9af96b1d

  • SHA1

    1b98a249fd4a8980865c308d2ea9787438e28227

  • SHA256

    05d249b7ce480e92a5ffe8c91e7028e92b7b7ff949c13c6469d38afb1d49ca94

  • SHA512

    e3dd1b7256eace56277f1883036eceba04528d4246208cc57c6b9ad9cbed2951cfb683177699cbab7653d956130faadea0ea72af433c6f7b8d75c8a732edf41c

  • SSDEEP

    384:vXHdxz0C0EKqd+1xYQ2S9pRrxdMulz5w6OyMdFggl8YCmXBadPEYH8:fcC03qdSaQf7Bxqulabl98dt

Score
7/10
discovery

Malware Config

Targets

    • Target

      ef1a0e3331d4326c83f6838f9af96b1d_JaffaCakes118

    • Size

      25KB

    • MD5

      ef1a0e3331d4326c83f6838f9af96b1d

    • SHA1

      1b98a249fd4a8980865c308d2ea9787438e28227

    • SHA256

      05d249b7ce480e92a5ffe8c91e7028e92b7b7ff949c13c6469d38afb1d49ca94

    • SHA512

      e3dd1b7256eace56277f1883036eceba04528d4246208cc57c6b9ad9cbed2951cfb683177699cbab7653d956130faadea0ea72af433c6f7b8d75c8a732edf41c

    • SSDEEP

      384:vXHdxz0C0EKqd+1xYQ2S9pRrxdMulz5w6OyMdFggl8YCmXBadPEYH8:fcC03qdSaQf7Bxqulabl98dt

    Score
    7/10
    discovery

    • Executes dropped EXE

    • Loads dropped DLL

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Network Share Discovery

      Attempt to gather information on host network.

      discovery

    • Drops autorun.inf file

      Malware can abuse Windows Autorun to spread further via attached volumes.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks