Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

176490eeb0...18.exe

windows7-x64

10

176490eeb0...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    176490eeb06579d38e87ae9420d58baf_JaffaCakes118

  • Size

    76KB

  • Sample

    241005-my3b7azhqr

  • MD5

    176490eeb06579d38e87ae9420d58baf

  • SHA1

    e687b711fdafa7d455729c0c5b8105b9360963f6

  • SHA256

    ab934e7c9ac13f178d3ee033579467a6171d13ade679e714b52b8f8f54af55e3

  • SHA512

    b14d8725809a32ef905594c485e3fcb6d822e1d65f171d24f536246b35bf30185b755665337124ce6f2d10bf2f61f0017c60b93d65e2e5b8f8e45c840431c3a3

  • SSDEEP

    768:9JPHOF3W8nMIbk6KQVEs8rA7FYM9M6Ap9riiJtXbxaEyQkhzyqeIdVVyeoUG79p3:9Jf83W8W60IL26Ap8iJJ3BSeIDIJVpp3

Score
10/10
discoverypersistence

Malware Config

Targets

    • Target

      176490eeb06579d38e87ae9420d58baf_JaffaCakes118

    • Size

      76KB

    • MD5

      176490eeb06579d38e87ae9420d58baf

    • SHA1

      e687b711fdafa7d455729c0c5b8105b9360963f6

    • SHA256

      ab934e7c9ac13f178d3ee033579467a6171d13ade679e714b52b8f8f54af55e3

    • SHA512

      b14d8725809a32ef905594c485e3fcb6d822e1d65f171d24f536246b35bf30185b755665337124ce6f2d10bf2f61f0017c60b93d65e2e5b8f8e45c840431c3a3

    • SSDEEP

      768:9JPHOF3W8nMIbk6KQVEs8rA7FYM9M6Ap9riiJtXbxaEyQkhzyqeIdVVyeoUG79p3:9Jf83W8W60IL26Ap8iJJ3BSeIDIJVpp3

    Score
    10/10
    discoverypersistence

    • Modifies WinLogon for persistence

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks