Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

5

JaffaCakes...40.exe

windows7-x64

10

JaffaCakes...40.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_5f9d4155858bf995f1120af29175bd40

  • Size

    224KB

  • Sample

    250101-ww6q9sxjd1

  • MD5

    5f9d4155858bf995f1120af29175bd40

  • SHA1

    b49e28e45ddca86146fb398ad90c7aa9a6c76557

  • SHA256

    4ab026da4f0df17224bf190c261dab72f06e40a3b15b44d79fdedaf401f615c6

  • SHA512

    044c38007d6705ec01a6faaedad430f1de33ec98fc5de58412e4dd101cd1110f7ec5d5473c736c92e4a57ad76253ec6f3bb8c91dbbc1477a24e4a2cf33507959

  • SSDEEP

    3072:vHjk+0oLnWFnzBHv/xWFsg8WatFBGFVWPE5ac0pG/1z+QVMbg1jm0+J:Po/BHng5HaVG4G/1z+QVMbg1jv+

Score
10/10
vobfusdiscoverypersistenceupxworm

Malware Config

Targets

    • Target

      JaffaCakes118_5f9d4155858bf995f1120af29175bd40

    • Size

      224KB

    • MD5

      5f9d4155858bf995f1120af29175bd40

    • SHA1

      b49e28e45ddca86146fb398ad90c7aa9a6c76557

    • SHA256

      4ab026da4f0df17224bf190c261dab72f06e40a3b15b44d79fdedaf401f615c6

    • SHA512

      044c38007d6705ec01a6faaedad430f1de33ec98fc5de58412e4dd101cd1110f7ec5d5473c736c92e4a57ad76253ec6f3bb8c91dbbc1477a24e4a2cf33507959

    • SSDEEP

      3072:vHjk+0oLnWFnzBHv/xWFsg8WatFBGFVWPE5ac0pG/1z+QVMbg1jm0+J:Po/BHng5HaVG4G/1z+QVMbg1jv+

    Score
    10/10
    vobfusdiscoverypersistenceupxworm

    • Vobfus

      A widespread worm which spreads via network drives and removable media.

      wormvobfus

    • Vobfus family

      vobfus

    • Adds policy Run key to start application

      persistence

    • Adds Run key to start application

      persistence

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks