Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

6

Static

static

5

5351c523dd...18.exe

windows7-x64

6

5351c523dd...18.exe

windows10-2004-x64

6

Sharing

Copy URL
Twitter E-mail

General

  • Target

    5351c523dddc690a3c386cd4fb12db13_JaffaCakes118

  • Size

    338KB

  • Sample

    241017-x6gqkavejk

  • MD5

    5351c523dddc690a3c386cd4fb12db13

  • SHA1

    06558490be4b9a7c068858c0bbdbebbb92f59a69

  • SHA256

    31458512ea2f246c2ae3d3a3fbc3ec17ddcc27a153b592cd8c3e906b3ba7c2de

  • SHA512

    0712c0f31d5feb4d3c0ddc61c82ec32e1cb99f7dd38e44f61fc01a34a6726750f2dbe756353264857cbe6003ccea656e26c8fdd2e42a74ccf7b5fdb1b6e05b3b

  • SSDEEP

    6144:/jrKGGC+a2rBVY4MK4tlQ7vyTM3PZ/EZDzLd4gewHlRRo+vx:ny+2r3Y4N7vYM/Z/gzLd4gewX5x

Score
6/10
bootkitdiscoverypersistenceupx

Malware Config

Targets

    • Target

      5351c523dddc690a3c386cd4fb12db13_JaffaCakes118

    • Size

      338KB

    • MD5

      5351c523dddc690a3c386cd4fb12db13

    • SHA1

      06558490be4b9a7c068858c0bbdbebbb92f59a69

    • SHA256

      31458512ea2f246c2ae3d3a3fbc3ec17ddcc27a153b592cd8c3e906b3ba7c2de

    • SHA512

      0712c0f31d5feb4d3c0ddc61c82ec32e1cb99f7dd38e44f61fc01a34a6726750f2dbe756353264857cbe6003ccea656e26c8fdd2e42a74ccf7b5fdb1b6e05b3b

    • SSDEEP

      6144:/jrKGGC+a2rBVY4MK4tlQ7vyTM3PZ/EZDzLd4gewHlRRo+vx:ny+2r3Y4N7vYM/Z/gzLd4gewX5x

    Score
    6/10
    bootkitdiscoverypersistenceupx

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

      bootkitpersistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks