Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

0013210c0c...18.exe

windows7-x64

8

0013210c0c...18.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0013210c0c72e1986c321e41190b187c_JaffaCakes118

  • Size

    336KB

  • Sample

    240930-hsshks1gkl

  • MD5

    0013210c0c72e1986c321e41190b187c

  • SHA1

    103fec1a835e5481d17affa4cba6b0728e7be778

  • SHA256

    c7a08592bdf69cac3585687e7901b3864d46a17c3f3b41638f59d4b62dc2b6e2

  • SHA512

    787cdc54b32e7fda314f0c0d8a9c149741d85cdc16755b2a196d5fd79d5c5c07157614017be399ebdd569dc9f132829fc3a6800639a98ff1c1aeb7c5eeb5b925

  • SSDEEP

    6144:+8U2qy6rRZb7jxGYKSTJDPM83llq9v+evY56asFmZluUbbVizdKRJoE5:gzy6rRxE8UOlwvVvY5homZIUM0Rqe

Score
8/10
discovery

Malware Config

Targets

    • Target

      0013210c0c72e1986c321e41190b187c_JaffaCakes118

    • Size

      336KB

    • MD5

      0013210c0c72e1986c321e41190b187c

    • SHA1

      103fec1a835e5481d17affa4cba6b0728e7be778

    • SHA256

      c7a08592bdf69cac3585687e7901b3864d46a17c3f3b41638f59d4b62dc2b6e2

    • SHA512

      787cdc54b32e7fda314f0c0d8a9c149741d85cdc16755b2a196d5fd79d5c5c07157614017be399ebdd569dc9f132829fc3a6800639a98ff1c1aeb7c5eeb5b925

    • SSDEEP

      6144:+8U2qy6rRZb7jxGYKSTJDPM83llq9v+evY56asFmZluUbbVizdKRJoE5:gzy6rRxE8UOlwvVvY5homZIUM0Rqe

    Score
    8/10
    discovery

    • Drops file in Drivers directory

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Drops startup file

    • Executes dropped EXE

    • Loads dropped DLL

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks