Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

5

JaffaCakes...c6.exe

windows7-x64

10

JaffaCakes...c6.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_85be3282af2c3dfa323060ce72793ac6

  • Size

    121KB

  • Sample

    250322-dx9kfaxsbz

  • MD5

    85be3282af2c3dfa323060ce72793ac6

  • SHA1

    d29a37657731304eaef892b92321969a4c04e967

  • SHA256

    13e58d658f60e2de88d14d0221574184e3fb05c6a3739b375dc925f854e98446

  • SHA512

    884616246e34db583d36c4e7c1f873008a08d581b7643e542cfbde62b6422ac501eb90f0b402cee378034045dd276ffafbd1e47086d50aea23485b9c5c2db39d

  • SSDEEP

    3072:SHk0dbcfrBamAh8fIWPLzJI0YpvcgHnpLRAAjxOT0QvX72a0:eglaIJ+0/EnpNAh1

Score
10/10
ramnitbankerdiscoverypersistencespywarestealertrojanupxworm

Malware Config

Targets

    • Target

      JaffaCakes118_85be3282af2c3dfa323060ce72793ac6

    • Size

      121KB

    • MD5

      85be3282af2c3dfa323060ce72793ac6

    • SHA1

      d29a37657731304eaef892b92321969a4c04e967

    • SHA256

      13e58d658f60e2de88d14d0221574184e3fb05c6a3739b375dc925f854e98446

    • SHA512

      884616246e34db583d36c4e7c1f873008a08d581b7643e542cfbde62b6422ac501eb90f0b402cee378034045dd276ffafbd1e47086d50aea23485b9c5c2db39d

    • SSDEEP

      3072:SHk0dbcfrBamAh8fIWPLzJI0YpvcgHnpLRAAjxOT0QvX72a0:eglaIJ+0/EnpNAh1

    Score
    10/10
    ramnitbankerdiscoverypersistencespywarestealertrojanupxworm

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

      trojanspywarestealerwormbankerramnit

    • Ramnit family

      ramnit

    • Sets service image path in registry

      persistence

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks