Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

14abf2776b...18.exe

windows7-x64

10

14abf2776b...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    14abf2776bdbba37998e52487ea5dc22_JaffaCakes118

  • Size

    170KB

  • Sample

    241004-ya42nascmj

  • MD5

    14abf2776bdbba37998e52487ea5dc22

  • SHA1

    3d87bdd870bba84f37481ac48c7b88196631a49c

  • SHA256

    b6ed102c8fc3c3d7df41c785f5b40771e1e5ea0c00ed5498a1b0bd4cdd550b56

  • SHA512

    44eb095e1eb42aacef377b6ecc049b3d3e02e10b28a8d0dc79b3001a25ddc3104dcbfe019f3aa57355a9b50b632a94c1a7d32ad8b8ce49eefecbd618725deba0

  • SSDEEP

    3072:Qy2+BBtCq6TkJ/p7gkbvGibpuVym8Otywpl32wXLTinknDgY6VzIhH1Wub9L5V:Qb+BBwOhTbvMwcEq328LTinkDrmMVWm

Score
10/10
discoverypersistencespywarestealerupx

Malware Config

Targets

    • Target

      14abf2776bdbba37998e52487ea5dc22_JaffaCakes118

    • Size

      170KB

    • MD5

      14abf2776bdbba37998e52487ea5dc22

    • SHA1

      3d87bdd870bba84f37481ac48c7b88196631a49c

    • SHA256

      b6ed102c8fc3c3d7df41c785f5b40771e1e5ea0c00ed5498a1b0bd4cdd550b56

    • SHA512

      44eb095e1eb42aacef377b6ecc049b3d3e02e10b28a8d0dc79b3001a25ddc3104dcbfe019f3aa57355a9b50b632a94c1a7d32ad8b8ce49eefecbd618725deba0

    • SSDEEP

      3072:Qy2+BBtCq6TkJ/p7gkbvGibpuVym8Otywpl32wXLTinknDgY6VzIhH1Wub9L5V:Qb+BBwOhTbvMwcEq328LTinkDrmMVWm

    Score
    10/10
    discoverypersistencespywarestealerupx

    • Modifies WinLogon for persistence

      persistence

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks