Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
JaffaCakes118_6ee437ecf9155eea4f1169a58e9d9e6a
-
Size
64KB
-
Sample
250107-vjzxhszncs
-
MD5
6ee437ecf9155eea4f1169a58e9d9e6a
-
SHA1
bfafbff53813fe7cba60a39c25680e7153b3fa26
-
SHA256
e9e940c2dd5ec66cc266277b63795515ecb626eb7cfd94cbb7f6186d0a44de56
-
SHA512
b1b4f75f6d194eab630b8ef414ed99818cea7e2a7d7201cd4ee62a6abaf8b982411060db4538f565080784d5082a7927bc6d311cd4846599f494eb0ebed3a87f
-
SSDEEP
1536:td9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZTl/5:FdseIOMEZEyFjEOFqTiQm5l/5
Behavioral task
behavioral1
Sample
JaffaCakes118_6ee437ecf9155eea4f1169a58e9d9e6a.exe
Resource
win7-20240903-en
Malware Config
Extracted
neconyd
http://ow5dirasuek.com/
http://mkkuei4kdsz.com/
http://lousta.net/
Targets
-
-
Target
JaffaCakes118_6ee437ecf9155eea4f1169a58e9d9e6a
-
Size
64KB
-
MD5
6ee437ecf9155eea4f1169a58e9d9e6a
-
SHA1
bfafbff53813fe7cba60a39c25680e7153b3fa26
-
SHA256
e9e940c2dd5ec66cc266277b63795515ecb626eb7cfd94cbb7f6186d0a44de56
-
SHA512
b1b4f75f6d194eab630b8ef414ed99818cea7e2a7d7201cd4ee62a6abaf8b982411060db4538f565080784d5082a7927bc6d311cd4846599f494eb0ebed3a87f
-
SSDEEP
1536:td9dseIOcE93bIvYvZEyF4EEOF6N4yS+AQmZTl/5:FdseIOMEZEyFjEOFqTiQm5l/5
-
Neconyd family
-
Executes dropped EXE
-
Loads dropped DLL
-
Drops file in System32 directory
-