Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

Users/cldi...CC.exe

windows7-x64

10

Users/cldi...CC.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_0dcabed4f80e953f94af32b0ad7d040fc64ca261f91aed7521b92458b1e7b2d3

  • Size

    349KB

  • MD5

    4294bd0c366e527ac0c6ea07f45f7b53

  • SHA1

    6f02676a7a7a8fae3440165bc89a036ab8605404

  • SHA256

    0dcabed4f80e953f94af32b0ad7d040fc64ca261f91aed7521b92458b1e7b2d3

  • SHA512

    6c535d33f93ccb59cb5106260e84fa69c45fa9345ffd0f3f0cbd0421762f796c3ee1292fef018cbdc0e8e63ae30bb2105c9ccf33d35e8cfa2a89cbe2cef22943

  • SSDEEP

    6144:ycDaHNZdqdfGf6Whi0dl/a+ZzGvXcL9U7Xa1lQYCAuKHMvuUYHiWo05zykA:xMoefba+hGY9U7Xa1aYEqMvuUbWukA

Score
3/10

Malware Config

Signatures

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • JaffaCakes118_0dcabed4f80e953f94af32b0ad7d040fc64ca261f91aed7521b92458b1e7b2d3
    .zip

    Password: infected

  • ProgramData/McAfee/QuarMeta/f21373bd-aea3-4ad2-972b-139e1987a205
    .xml
  • Users/cldieckmann/AppData/Roaming/windirect/ьяшмBCCC.exe
    .exe windows:4 windows x86 arch:x86

    60d65d0f46d14be973eba0f159f9c98b


    Headers

    Imports

    Sections