Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

f13c70658c...18.exe

windows7-x64

7

f13c70658c...18.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    148s
  • max time network
    153s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240412-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240412-enlocale:en-usos:windows10-2004-x64system
  • submitted
    15/04/2024, 14:02

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f13c70658cfa6755a45e9935c6b58d43_JaffaCakes118.exe

  • Size

    22KB

  • MD5

    f13c70658cfa6755a45e9935c6b58d43

  • SHA1

    37b708fd9b885b3df4ef5754b730b902ff08be2f

  • SHA256

    41357a22835b0cf26c1535ae2f11b144771de64e1509c36d7099ac83e0a84a95

  • SHA512

    55b0851ebfc0256d1430159f472be3c2fcbc32d6ea05bfba339fc76b956f39f5833986c9fe80c47aa43da19993f3368f08a376632a76503b052f526da350b7a2

  • SSDEEP

    384:m5nAGV0Hi3mKC0klMaTvkbRiNjxVg3V24TPvocvRUQ:m5AGciC0klMTiN8lNPwcpUQ

Score
7/10

Malware Config

Signatures

  • Loads dropped DLL 1 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\f13c70658cfa6755a45e9935c6b58d43_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\f13c70658cfa6755a45e9935c6b58d43_JaffaCakes118.exe"
    1⤵
    • Loads dropped DLL
    • Suspicious use of SetWindowsHookEx
    PID:692

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\qrqwerwqer.dll
    Filesize

    14KB

    MD5

    83932a495b509a697d85a1014da61e3b

    SHA1

    00b22e681a951d2e97dc95619b0a59b36b9ad6ab

    SHA256

    2c0729be5977d2c16d916b753ef95a787f8188359478ee964d4af37773d986bd

    SHA512

    0b7b0aa8613acbcc4ac2cb15ba882cfb908697890ce8a91bb44a52eaa01272cfa6e224c354c7898eb71c06be1d8a9f8dffc470eeea3e2bb4107d36d788076158

    Download Submit