Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

1

2f52bef181...18.exe

windows7-x64

7

2f52bef181...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2f52bef181e20414f6e44b5b56d97f18_JaffaCakes118

  • Size

    165KB

  • Sample

    241009-mbtrjashqg

  • MD5

    2f52bef181e20414f6e44b5b56d97f18

  • SHA1

    ef23bb5cfc72e3749f535c7d08b535c6e6281ec6

  • SHA256

    5a895acb01f66d67a71a502ce692beb2d1d699d2e2862b3a292eb1345203f248

  • SHA512

    597ca9197fd181614253f87b518084b6fef2248f42e880fab9cdf606a8da3168ee091bfe40bca809a8d93d31c5b3c8bbb9f3d988a39ec77597e6bc50e9e499a9

  • SSDEEP

    3072:k4HCWau/PlYeuL7ZLFh6Ca6cbL9l2hzB3fJCC6j8+Er6ez4:LiI/PlY37ZLF4Ca6WABqBOvs

Score
7/10
discovery

Malware Config

Targets

    • Target

      2f52bef181e20414f6e44b5b56d97f18_JaffaCakes118

    • Size

      165KB

    • MD5

      2f52bef181e20414f6e44b5b56d97f18

    • SHA1

      ef23bb5cfc72e3749f535c7d08b535c6e6281ec6

    • SHA256

      5a895acb01f66d67a71a502ce692beb2d1d699d2e2862b3a292eb1345203f248

    • SHA512

      597ca9197fd181614253f87b518084b6fef2248f42e880fab9cdf606a8da3168ee091bfe40bca809a8d93d31c5b3c8bbb9f3d988a39ec77597e6bc50e9e499a9

    • SSDEEP

      3072:k4HCWau/PlYeuL7ZLFh6Ca6cbL9l2hzB3fJCC6j8+Er6ez4:LiI/PlY37ZLF4Ca6WABqBOvs

    Score
    7/10
    discovery

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops desktop.ini file(s)

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks