Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

0fc2ad6c65...18.exe

windows7-x64

1

0fc2ad6c65...18.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    141s
  • max time network
    122s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20231215-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20231215-enlocale:en-usos:windows10-2004-x64system
  • submitted
    28/03/2024, 20:56

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0fc2ad6c65af9cca5467593cecf4a9a0_JaffaCakes118.exe

  • Size

    93KB

  • MD5

    0fc2ad6c65af9cca5467593cecf4a9a0

  • SHA1

    ddf9045bd998d270e30f69cda4d0f88e07a11630

  • SHA256

    f245d3069d889e5f53e21153c0f60a22193ba7222c0b6c272a76d743e9e931a5

  • SHA512

    99eb2a4542e56757c1ff282433c7e8699fdd572338442741ed092592e3dd3ae35ad6221df1c0bac97a987f1c2b3cd2aeb188c276c966b583ed7b2767697b1611

  • SSDEEP

    1536:U4e1zjhQjXncBnJtWw1abD+5ugo352XhKvv5iKjIkas47Q+jKIMku0RQlet2c3j:U4e13BnWwEba5uZ3ShKvv5iKjLas47fN

Score
1/10

Malware Config

Signatures

  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\0fc2ad6c65af9cca5467593cecf4a9a0_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\0fc2ad6c65af9cca5467593cecf4a9a0_JaffaCakes118.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:5040

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/5040-0-0x0000000000400000-0x000000000049A000-memory.dmp

    Filesize

    616KB

    Download

  • memory/5040-1-0x00000000001C0000-0x00000000001C2000-memory.dmp

    Filesize

    8KB

    Download

  • memory/5040-5-0x0000000000400000-0x000000000049A000-memory.dmp

    Filesize

    616KB

    Download

  • memory/5040-7-0x00000000001C0000-0x00000000001C2000-memory.dmp

    Filesize

    8KB

    Download