Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

5

462b2f9da8...18.exe

windows7-x64

7

462b2f9da8...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    462b2f9da89ff03264ca42dd5b341c92_JaffaCakes118

  • Size

    59KB

  • Sample

    241015-gn6zqssemq

  • MD5

    462b2f9da89ff03264ca42dd5b341c92

  • SHA1

    3637a7c0364794d0cc892432db682a0b349d2f9b

  • SHA256

    1eaba89aa70d9e6fb4ad6187e2d51c38093b9c294f5d41ca3fbeb815812cf006

  • SHA512

    3e995b6d8cbeec5c8cc77fa1a42ce1571f354685bbd78df7c05f30197b8947b5558d1dcc7353973d8436535ec49d1228f22e04684cf0190caa2db6e82a498a95

  • SSDEEP

    768:XocAX3LKew369lp2z3Sd4baFXLjwP/Tgj93b8NIocVSEFGocAX3LKew369lp2z3L:SKcR4mjD9r823FHKcR4mjD9r823FG

Score
7/10
discoverypersistencespywarestealerupx

Malware Config

Targets

    • Target

      462b2f9da89ff03264ca42dd5b341c92_JaffaCakes118

    • Size

      59KB

    • MD5

      462b2f9da89ff03264ca42dd5b341c92

    • SHA1

      3637a7c0364794d0cc892432db682a0b349d2f9b

    • SHA256

      1eaba89aa70d9e6fb4ad6187e2d51c38093b9c294f5d41ca3fbeb815812cf006

    • SHA512

      3e995b6d8cbeec5c8cc77fa1a42ce1571f354685bbd78df7c05f30197b8947b5558d1dcc7353973d8436535ec49d1228f22e04684cf0190caa2db6e82a498a95

    • SSDEEP

      768:XocAX3LKew369lp2z3Sd4baFXLjwP/Tgj93b8NIocVSEFGocAX3LKew369lp2z3L:SKcR4mjD9r823FHKcR4mjD9r823FG

    Score
    7/10
    discoverypersistencespywarestealerupx

    • Executes dropped EXE

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

      spywarestealer

    • Adds Run key to start application

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks