Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

0df5e54be8...18.exe

windows7-x64

7

0df5e54be8...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0df5e54be8f532a54c73b01f9c25c1d6_JaffaCakes118

  • Size

    1.2MB

  • Sample

    241003-e9tv7ayekd

  • MD5

    0df5e54be8f532a54c73b01f9c25c1d6

  • SHA1

    d92987052019161bc610184bf5a92084808ed58a

  • SHA256

    e8541ed4e1b8964fc1e8c31e528778e6bab6d338d7355cfac8888dbc080d8f46

  • SHA512

    687dff3e2ca201284d584f93f2ae87bda25b9f71bb35f702eb8cfbeb5a27c1abbef3dfa1a40d47cb578569e1db4173bb31fa4e2e6490a730474d4039f43bae1f

  • SSDEEP

    24576:+vghg41N5L+s79FIY4ponf0e56xh3liEKKO7AynQedLSEgG:+vg/gq9FOC0esxh1i/ldQ2GEx

Score
7/10
bootkitdiscoverypersistence

Malware Config

Targets

    • Target

      0df5e54be8f532a54c73b01f9c25c1d6_JaffaCakes118

    • Size

      1.2MB

    • MD5

      0df5e54be8f532a54c73b01f9c25c1d6

    • SHA1

      d92987052019161bc610184bf5a92084808ed58a

    • SHA256

      e8541ed4e1b8964fc1e8c31e528778e6bab6d338d7355cfac8888dbc080d8f46

    • SHA512

      687dff3e2ca201284d584f93f2ae87bda25b9f71bb35f702eb8cfbeb5a27c1abbef3dfa1a40d47cb578569e1db4173bb31fa4e2e6490a730474d4039f43bae1f

    • SSDEEP

      24576:+vghg41N5L+s79FIY4ponf0e56xh3liEKKO7AynQedLSEgG:+vg/gq9FOC0esxh1i/ldQ2GEx

    Score
    7/10
    bootkitdiscoverypersistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks