Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
JaffaCakes118_8a4f49d003f0a699e2648a556ea078f2
-
Size
45KB
-
Sample
250328-ee8e4a1yex
-
MD5
8a4f49d003f0a699e2648a556ea078f2
-
SHA1
04ffb0464d152636f8cb44623a715a1b04001920
-
SHA256
48d496b6f368b7bc6f89a1f77d6d68ec5576b74a616afac7991326fe02ec434b
-
SHA512
e4a0b9fc2c848aa233bbd800306aafe6d4017cf55a810617a21a7562535da6b5e9e0eb18f503817512e5bff1fee88250f4ca3de1c37d9cfded12b92da37a2d8e
-
SSDEEP
768:SCIqdH/k1ZVcT194jp4yn9eOeFvEPfFW9561QpK8cg7IRiVtaTNRT3msNMX:SNqaLV8a6yn9VnSA4K8cgtVsJJmgMX
Malware Config
Targets
-
-
Target
JaffaCakes118_8a4f49d003f0a699e2648a556ea078f2
-
Size
45KB
-
MD5
8a4f49d003f0a699e2648a556ea078f2
-
SHA1
04ffb0464d152636f8cb44623a715a1b04001920
-
SHA256
48d496b6f368b7bc6f89a1f77d6d68ec5576b74a616afac7991326fe02ec434b
-
SHA512
e4a0b9fc2c848aa233bbd800306aafe6d4017cf55a810617a21a7562535da6b5e9e0eb18f503817512e5bff1fee88250f4ca3de1c37d9cfded12b92da37a2d8e
-
SSDEEP
768:SCIqdH/k1ZVcT194jp4yn9eOeFvEPfFW9561QpK8cg7IRiVtaTNRT3msNMX:SNqaLV8a6yn9VnSA4K8cgtVsJJmgMX
Score10/10-
Detects MyDoom family
-
MyDoom
MyDoom is a Worm that is written in C++.
-
Mydoom family
-
Boot or Logon Autostart Execution: Active Setup
Adversaries may achieve persistence by adding a Registry key to the Active Setup of the local machine.
-
Executes dropped EXE
-
Adds Run key to start application
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
MITRE ATT&CK Enterprise v15
Persistence
Boot or Logon Autostart Execution
2Active Setup
1Registry Run Keys / Startup Folder
1Privilege Escalation
Boot or Logon Autostart Execution
2Active Setup
1Registry Run Keys / Startup Folder
1