Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

f673496497...18.exe

windows7-x64

8

f673496497...18.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f673496497c3de29e925e3c0330c7ce5_JaffaCakes118

  • Size

    62KB

  • Sample

    240925-vesbwazblf

  • MD5

    f673496497c3de29e925e3c0330c7ce5

  • SHA1

    ad27ee2b20eaeea847138767ce196157c42b36e8

  • SHA256

    800e25ec88196565a9020cfcb5a07f2e4d4952003c0f44ad524b02e3a11cd7bd

  • SHA512

    be74612fad3b88c2502d4895fee55d9870944a93513521ef1ab5334ec85fd7a4bf4c3532165ee17aa888352927836afd7d4cec8cae44b099b55bdd49a6a8e513

  • SSDEEP

    1536:JDoBuXoSY3cHUchmJ1ZJviSPsyqRW3zqttN4czPuV:RCuXxOmIJJvRkyqRozqqczuV

Score
8/10
discoverypersistence

Malware Config

Targets

    • Target

      f673496497c3de29e925e3c0330c7ce5_JaffaCakes118

    • Size

      62KB

    • MD5

      f673496497c3de29e925e3c0330c7ce5

    • SHA1

      ad27ee2b20eaeea847138767ce196157c42b36e8

    • SHA256

      800e25ec88196565a9020cfcb5a07f2e4d4952003c0f44ad524b02e3a11cd7bd

    • SHA512

      be74612fad3b88c2502d4895fee55d9870944a93513521ef1ab5334ec85fd7a4bf4c3532165ee17aa888352927836afd7d4cec8cae44b099b55bdd49a6a8e513

    • SSDEEP

      1536:JDoBuXoSY3cHUchmJ1ZJviSPsyqRW3zqttN4czPuV:RCuXxOmIJJvRkyqRozqqczuV

    Score
    8/10
    discoverypersistence

    • Drops file in Drivers directory

    • Server Software Component: Terminal Services DLL

      persistence

    • Deletes itself

    • Loads dropped DLL

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks