Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

44bd8f9ac9...18.exe

windows7-x64

7

44bd8f9ac9...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    44bd8f9ac9a3c8158b088f35b462685f_JaffaCakes118

  • Size

    1.4MB

  • Sample

    241014-3msxdascke

  • MD5

    44bd8f9ac9a3c8158b088f35b462685f

  • SHA1

    fc9a02de2af758950542d3209400d4504cfeed37

  • SHA256

    474632e0969c5835659a9d093a1578554b52cdd1b480c1fcb3b389f4b4fb5e6d

  • SHA512

    a8225f6faa10bd34c96d3862fac70b67d8f3aa960187bbe9564938ff922202384d947e01897943411fe10bd0311ab97b72d27d81b419d942a5aa314ce1d0ed54

  • SSDEEP

    24576:+VXnzzwJyAlaPq/yLGfCym9yMWbkExZDXTsOGlCs/Af3ilofeYdqbO/8nNovq9L:+NzCyyz/b/xMWbkETXTsOGZkiy9f/8nN

Score
7/10
discoverypersistence

Malware Config

Targets

    • Target

      44bd8f9ac9a3c8158b088f35b462685f_JaffaCakes118

    • Size

      1.4MB

    • MD5

      44bd8f9ac9a3c8158b088f35b462685f

    • SHA1

      fc9a02de2af758950542d3209400d4504cfeed37

    • SHA256

      474632e0969c5835659a9d093a1578554b52cdd1b480c1fcb3b389f4b4fb5e6d

    • SHA512

      a8225f6faa10bd34c96d3862fac70b67d8f3aa960187bbe9564938ff922202384d947e01897943411fe10bd0311ab97b72d27d81b419d942a5aa314ce1d0ed54

    • SSDEEP

      24576:+VXnzzwJyAlaPq/yLGfCym9yMWbkExZDXTsOGlCs/Af3ilofeYdqbO/8nNovq9L:+NzCyyz/b/xMWbkETXTsOGZkiy9f/8nN

    Score
    7/10
    discoverypersistence

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks