Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

f9e40f0a26...18.exe

windows7-x64

f9e40f0a26...18.exe

windows10-2004-x64

Sharing

Copy URL
Twitter E-mail

General

  • Target

    f9e40f0a2664b772eab700a323387292_JaffaCakes118

  • Size

    88KB

  • Sample

    240927-g6yfbasclh

  • MD5

    f9e40f0a2664b772eab700a323387292

  • SHA1

    9b2f09b31654837f26340fb3e35c702d6c60b166

  • SHA256

    8912b0f5e39b1f8133016c6738f58f52d7c38959cce8cab6fde72fe65394c471

  • SHA512

    6fe94bf6ff2e2d19e11aabb64e94432a0f2236e03cb75d09b0e30aabfb63411b17b6752ead5c5113881343da4d84fd099031bbcab627ca360224209cd5304ee1

  • SSDEEP

    1536:dtM641Fj1Rnqm5SB7XT/t5OkxSJ3UolG/hD33cGT1xCiKyoONgZJ+sEEEC7xZopD:h41d1RnXEXbGkxSJkoc/hzRvCCfN0JvQ

Score
8/10
discoverypersistenceprivilege_escalation

Malware Config

Targets

    • Target

      f9e40f0a2664b772eab700a323387292_JaffaCakes118

    • Size

      88KB

    • MD5

      f9e40f0a2664b772eab700a323387292

    • SHA1

      9b2f09b31654837f26340fb3e35c702d6c60b166

    • SHA256

      8912b0f5e39b1f8133016c6738f58f52d7c38959cce8cab6fde72fe65394c471

    • SHA512

      6fe94bf6ff2e2d19e11aabb64e94432a0f2236e03cb75d09b0e30aabfb63411b17b6752ead5c5113881343da4d84fd099031bbcab627ca360224209cd5304ee1

    • SSDEEP

      1536:dtM641Fj1Rnqm5SB7XT/t5OkxSJ3UolG/hD33cGT1xCiKyoONgZJ+sEEEC7xZopD:h41d1RnXEXbGkxSJkoc/hzRvCCfN0JvQ

    Score
    8/10
    discoverypersistenceprivilege_escalation

    • Event Triggered Execution: AppInit DLLs

      Adversaries may establish persistence and/or elevate privileges by executing malicious content triggered by AppInit DLLs loaded into processes.

      persistenceprivilege_escalation

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks