Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
3f7959fa3eac1c799f52f8bcaff2817e_JaffaCakes118
-
Size
8.5MB
-
Sample
241013-m4qwcashme
-
MD5
3f7959fa3eac1c799f52f8bcaff2817e
-
SHA1
ca4cd0bfef98aa9f8b0c9ef53401e4e10e83d180
-
SHA256
0b1bbcb0197ca224707d9c51818e44d78d40e1964d1e7e8c016e1c87c0c71151
-
SHA512
b702a41ad5d73a8be6f657eadeb4db49b51c944657a0b3c9bb4d87062b7074f09b9eccb66fc10963b539bfcd0af53c574d71ac20b31eddc338b1719febe4f8f1
-
SSDEEP
196608:EdW8H9CG8mv6xEfOsHoHSJT5xJ5hpXntrmHu:YCG8mbb9J5DtrSu
Malware Config
Targets
-
-
Target
3f7959fa3eac1c799f52f8bcaff2817e_JaffaCakes118
-
Size
8.5MB
-
MD5
3f7959fa3eac1c799f52f8bcaff2817e
-
SHA1
ca4cd0bfef98aa9f8b0c9ef53401e4e10e83d180
-
SHA256
0b1bbcb0197ca224707d9c51818e44d78d40e1964d1e7e8c016e1c87c0c71151
-
SHA512
b702a41ad5d73a8be6f657eadeb4db49b51c944657a0b3c9bb4d87062b7074f09b9eccb66fc10963b539bfcd0af53c574d71ac20b31eddc338b1719febe4f8f1
-
SSDEEP
196608:EdW8H9CG8mv6xEfOsHoHSJT5xJ5hpXntrmHu:YCG8mbb9J5DtrSu
Score7/10-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Event Triggered Execution: Component Object Model Hijacking
Adversaries may establish persistence by executing malicious content triggered by hijacked references to Component Object Model (COM) objects.
-
Executes dropped EXE
-
Loads dropped DLL
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
-
-
Target
$PLUGINSDIR/FileInfo.dll
-
Size
94KB
-
MD5
7bf6072eea13f568e14b74473ee514a6
-
SHA1
d86c73abad513aa7518ce9c784c70a4e85cd6c3f
-
SHA256
b9158daf83ad119017421c1c1c4d79b2f3209037dc7cfbe752e202785d024494
-
SHA512
59d459fd905923a382c97e01d80ce5235cbe5f799b8357d6b2dcbd1a1a33230f8e479aeca6c6df4c05171b79ebaac273e7db8de04ba759f23830368df46fb309
-
SSDEEP
1536:gP7qqhJqWumwfQH68hHgB59rYFdIxmG6QkKQP5J4/OYl+3BV1GjTF:GqOBWo7hHy2z+mQ6W/Jl+3naR
Score3/10 -
-
-
Target
$PLUGINSDIR/RCWidgetPlugin.dll
-
Size
1.0MB
-
MD5
c3b2ef9dc45c456200b42708da387038
-
SHA1
8029d50b42e6982d2590dbbca9029912f79be976
-
SHA256
f192abf8ab296a4f3be18171a7c7c9599bbe4e6040d0dc391ca8a303e23009d0
-
SHA512
b79cdcc230a508ac858b1c598db3806622d40e05f73b20a234e3f00c18e54047ec9ff717fa409348c5ad29bf89aa783b6ce4e27513fab667db15511583f46b13
-
SSDEEP
12288:bKuoKARR0f3cB+r+XnGVyEnGVywhKcY069+tnsgM4nGVyonGVyHS6Vqm+z6AM:b/fMB+r+XGlGNhC/Itns/oGdGEBqmAM
Score3/10 -
-
-
Target
$PLUGINSDIR/System.dll
-
Size
18KB
-
MD5
2bd4ba3e08273bea5de1a34d9888fd58
-
SHA1
a1c89adb5b3aff6789ba0ffc613cfd26392931f5
-
SHA256
0975b58f740e61ff50081f0acb4d60f14938979de24616e8c28912b1b690612c
-
SHA512
f625a28f4a6070e35ad61f91c772178f23edf4826ef243746b51c3404609a7ff42e7d10074b55b0ca7ac42ff53a5d501ab00859b98a00011975cbb4f983903d1
-
SSDEEP
384:ZJoiO8V2upW7vQjS/WndpkEYPLjQSSeMdphi:ZJzO8V2uovQjxIE+og
Score3/10 -
-
-
Target
2345Explorer.exe
-
Size
204KB
-
MD5
e7f787fa95f60e906dbbb1d4bcff2d2b
-
SHA1
1c253b1e1685b6eac05eea0f40e136fddccbf98f
-
SHA256
4337f40ba2b072b5c378d7eb7cdf2c91bcc76caf7aa4033b8f73915d0bf7aeab
-
SHA512
5c61c416d349b9cacf3c7f4a3e219bb307e382022012cb667db044f30bd6e50e24a239edc21bb484019ad1da326ea8791726bf9bb51d812a9968d46b5b21660c
-
SSDEEP
3072:FRLlPrlBEPeDwMGvvQy7ZjMQ+fQYTyLO+w3h4rSoy/+Delm0CEH9fiM6VevNeIBZ:TdbHwbX97R6pyLZSh4moy/+rKII3
Score1/10 -
-
-
Target
2345ExplorerReg.exe
-
Size
140KB
-
MD5
af07cf4574dfe4d143c8b6e26a3885f9
-
SHA1
be2aed6796e426d188b35315170eab1a2fa05fb2
-
SHA256
bfc613ff56393add78c137c3316f1b9a569f9f3c6ce4b34961673515e5ebaea8
-
SHA512
fa7398c4d70e35f2bae3741b828a0a90847a0c6be261713a743242b4610abdade8a644330e98b4381a1b18453cb117da89ed38c1cb4539f964dc4559eea39220
-
SSDEEP
3072:xJqvqrl6EPe+gs2vvgCbxjgip+vTvNeIE1tM:L3Y6gr39bJYTIIb
Score1/10 -
-
-
Target
Addon/Capture.addon
-
Size
315KB
-
MD5
ecdc4abb443c6260d11ffdf8e451b819
-
SHA1
8a06fe1e669b2ecd8b54d79e2bd4675141220ff6
-
SHA256
e475bace34ba2e63356b9d039b151355dc07790254a6f85474f759192c394435
-
SHA512
2066f7461ef1677d4708f9831467e28a36ca4a5a8b02caf91c9cfd26c9fa8ed1ea1f863f8d7ebe136e9b9cd81197ad3fc0a722f373b40243352c6e85429a5884
-
SSDEEP
3072:+XOGZlK/OYYKgCYTDKBXAXZqyc1IK77a6qRmOD7q+hQck4RnIxGb6jVmF:oLK/OYYKgCYShIqy3H13kY2Z6
Score3/10 -
-
-
Target
Coral.dll
-
Size
1.9MB
-
MD5
392e94d2f889aafa09375e922d6aecbc
-
SHA1
247e0ca39f30ed079bd41aafe1aa766ea8f26cb0
-
SHA256
0b43b4ec44de7865e8d8b450fa94aee380aba0d2155dd197d9d9448fd9a445e2
-
SHA512
3b3141493d84b96131331d4de73c708090f00737d02eab9833199814534015011218de9a9ccbf3f009316ee8eebbcb8ff269e3b1d06ac9a151b1c722cff0d900
-
SSDEEP
24576:wRYEVntaoC7++vDrtD8d1apeZeCJjJVIhrYA1y7RCIWL2YrvRGguSB4j8yv+wejv:nBo1IK40CIIHL8g1m8yv+wejfn
Score1/10 -
-
-
Target
CoralApp.dll
-
Size
496KB
-
MD5
3bea9945f9e35877186253fbd6125509
-
SHA1
bdb15453b96d5d2d36ef0d3ef9cefab1d013f288
-
SHA256
fee8739b7811e414185cea568611821bcb1e35d5c29f5e55e3d7b08b70fb4e8c
-
SHA512
15d2af0564ab93e3650dec8b4b2814c1880bcde2239ed5e29d9129f6f1ba0e5a79699f4a1549524d1d4b166b1c14ffd7990d023b49e240b3d82ed19bae625de1
-
SSDEEP
6144:cZ5flrXz+vXar211IARVcXweWEGHjYAn0A4HkEqIfWwynE0SxvOjIzf5k5H:UrXz+WWVcXwtPH0AHEqRnEVxVbS5H
Score1/10 -
-
-
Target
CoralDb.dll
-
Size
1.7MB
-
MD5
ffdc22f21e22e7aed86325050cba7e89
-
SHA1
e89e606eb266f6c93337b9c7b0cdedd40744163a
-
SHA256
2ad556f4865776fd0f68bd1751df37fbe0b0a48ec8b2ab51bb860f91b549d82b
-
SHA512
edd8ac66cd3c8a19228315a9ff6281f47b0c435f17aa25ee3f04f7c81dd981359eff6f93e71e7f52fde0305322f4ac5dac2271abd49444e79cf67204eac456bb
-
SSDEEP
24576:CaAWicXcfIazPgKZCC8EmCnKMwii8sNn3xTepCq1ve/oL/7OxBfVI:BAIazPgECgmCbiTgSoLKxBfVI
Score1/10 -
-
-
Target
CoralDownload.dll
-
Size
869KB
-
MD5
c5fb195869100c8de3cdc9aedb368e49
-
SHA1
d3ab65483c79d20f7de7f1fcaf0b9768ec91cc8b
-
SHA256
984b8193cf078aab5d87244d8f73c2be3cec6f8ae328137c376fed15dde11e81
-
SHA512
89db801514bf2540481fc242ab7e106eaf308f310bd8bcd707af6aff74457cf5a681f270d05e2eef816054d7c8b2b05ce3806c909f9758b8d3481311d85a346e
-
SSDEEP
24576:LwzNa16ZXvaJtSYrjjh6oSbay6WVAk0+mQR:Yqxh6dAdBQR
Score1/10 -
-
-
Target
CoralExtract.dll
-
Size
421KB
-
MD5
aa973ad1822b625f72840d80ca84430c
-
SHA1
8c4a96a156f27e4350966a3ce96381e207db5181
-
SHA256
7cde000de31d906e0e615a5445ae33a477ca03831c6b81b1eb6816e63541d49d
-
SHA512
d501ba44ddb8397b3038d551b1179a1812b3182892d27040bac6016a8f6f49959085f5fb8a9cf63290bfa3f6a026f308644c69e340dfc3dc7f69fd7c67b153ea
-
SSDEEP
6144:uAMMBjBbWLqWc8ErQMvpnWEeJZm2OVZaomJh+0Yncz9IR/TfMuY87DptTcUo:uAMMBjBbWgr10EZZaomJUvng9sY8YUo
Score1/10 -
-
-
Target
CoralHtmlWnd.dll
-
Size
441KB
-
MD5
d1b22875493b40aeea0e5fd2535f2a06
-
SHA1
3c62b5ae76f637746d6f8001129bb72633ce4344
-
SHA256
43ac2b7cdb010654bfdfce4e980b1c79b2a28174f0b77c2443c29c8b16bd44af
-
SHA512
f33d33df0efe8e482a61dcae0e30344e75f2dbfac21ea00e8d219ada0a0d4b2fd4a78063d0be264e68f97e4d3a75965ae95a9f89ebfda96b0066dacf52d4f6f3
-
SSDEEP
6144:jXz1GtWtmIv2zkFORztQtvDkQ+KNDzW3bo/bapDFtr:sI2zkF6zWxkQ+KNDQboza3tr
Score1/10 -
-
-
Target
CoralRender.dll
-
Size
325KB
-
MD5
a1c3348b4c56d1b00f558d6a9122bff6
-
SHA1
2190940cf8e17b1c47120865026b35dd40d13ad1
-
SHA256
18e72a346f0bc4791caf92cbe80d07341085c0d3cf709eaf9d4e129a3cc94b74
-
SHA512
9ee4cfccb103e83c8db7fba24f273e15a48b5abd7d7b76a15547e6243c9013f9318f11d4912fc7235fdc33d28f1e0eecacf300a711fbb7843eb56a59f0ba049a
-
SSDEEP
6144:PoNTCE71BvQbzZnRlYHrOPFJRUdHvXyDBO9oxzWLuvFANsVfoJ8nzhMODsVY1XF:wIE7pLY0gXF
Score1/10 -
-
-
Target
CoralTrident.dll
-
Size
1.5MB
-
MD5
d34856db11164877d15404774b1b9061
-
SHA1
9ac8df255ff96a201420e46c1baa5c74d8285aa0
-
SHA256
b4e161f37521447aaf351085f6893fec3490a761a6080da6089683522ba34f6b
-
SHA512
d17da85eae0b7d2bca9a12a9923376130100d551cf2cacd04fbfebca93836f1f3edd033a4e6f04b635ecd69e21f27c19d49d025f45edfa13445339dd5806d427
-
SSDEEP
24576:cy1Fc04zuwXr/Y7w1qZNEf5K44FdyAfHA03TKG9VFIdEsy429DKQGAfuf:cDuOkddyAzCdpyD9DKQGAfuf
Score1/10 -
-
-
Target
CoralUI.dll
-
Size
2.8MB
-
MD5
2490ac4625e78203a89cbb74cd3e5a52
-
SHA1
448a61d3857ff025d9226bbc75f21e3f01bc9f32
-
SHA256
f063a1149334af7f628462dda8706e47e01dc894bb36c4821ae0f2666a4c15ba
-
SHA512
c74cadd30cb07828930ca49e3f1a5b8750e0db2d72c817ac2e0f55bab7ef9e692e4265713626820a440a142fd866fa80d00b9656cd771d22cb987cb95c484f44
-
SSDEEP
49152:uI07n6Yefq20Q7nROKT/3qLko7XXhT8TODJ/o5E:t0E4bkShT8+
Score1/10 -