Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

f343990aef...18.exe

windows7-x64

1

f343990aef...18.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    149s
  • max time network
    150s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240412-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240412-enlocale:en-usos:windows10-2004-x64system
  • submitted
    16/04/2024, 10:08

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f343990aefd82d4dfdb99012726858fb_JaffaCakes118.exe

  • Size

    230KB

  • MD5

    f343990aefd82d4dfdb99012726858fb

  • SHA1

    5a62219951ec2d4e53e0a40490b13bca106d400d

  • SHA256

    f6bfb5dce6006528037050ecffa3adaeaa241303eaa623efcb075f63bcc474c2

  • SHA512

    d66b450477444ca0944a8f4cf2cfa7bfda4374eaac0390b42cb3da9b80cd0fb5f722328027dc62f9d8ffca25bbedc318e8268ae7b6375f0be1e17b8dc69e194a

  • SSDEEP

    3072:/MDCkU0Pj25agjZhUwuxCkKg34um3ZW7zcyEB66tRNy9+ikEV9aUMjIh14t/K:UZxL2vaCk77zZEY69iT3aUMU2S

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 64 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\f343990aefd82d4dfdb99012726858fb_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\f343990aefd82d4dfdb99012726858fb_JaffaCakes118.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    PID:1292

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1292-0-0x0000000000E80000-0x0000000000F1E000-memory.dmp

    Filesize

    632KB

    Download

  • memory/1292-1-0x0000000000BF0000-0x0000000000BF1000-memory.dmp

    Filesize

    4KB

    Download

  • memory/1292-2-0x0000000000E80000-0x0000000000F1E000-memory.dmp

    Filesize

    632KB

    Download

  • memory/1292-3-0x0000000000E80000-0x0000000000F1E000-memory.dmp

    Filesize

    632KB

    Download

  • memory/1292-4-0x0000000000BF0000-0x0000000000BF1000-memory.dmp

    Filesize

    4KB

    Download

  • memory/1292-5-0x0000000000E80000-0x0000000000F1E000-memory.dmp

    Filesize

    632KB

    Download

  • memory/1292-6-0x0000000000E80000-0x0000000000F1E000-memory.dmp

    Filesize

    632KB

    Download

  • memory/1292-7-0x0000000000E80000-0x0000000000F1E000-memory.dmp

    Filesize

    632KB

    Download

  • memory/1292-8-0x0000000000E80000-0x0000000000F1E000-memory.dmp

    Filesize

    632KB

    Download

  • memory/1292-9-0x0000000000E80000-0x0000000000F1E000-memory.dmp

    Filesize

    632KB

    Download

  • memory/1292-10-0x0000000000E80000-0x0000000000F1E000-memory.dmp

    Filesize

    632KB

    Download

  • memory/1292-11-0x0000000000E80000-0x0000000000F1E000-memory.dmp

    Filesize

    632KB

    Download

  • memory/1292-12-0x0000000000E80000-0x0000000000F1E000-memory.dmp

    Filesize

    632KB

    Download

  • memory/1292-13-0x0000000000E80000-0x0000000000F1E000-memory.dmp

    Filesize

    632KB

    Download

  • memory/1292-14-0x0000000000E80000-0x0000000000F1E000-memory.dmp

    Filesize

    632KB

    Download

  • memory/1292-15-0x0000000000E80000-0x0000000000F1E000-memory.dmp

    Filesize

    632KB

    Download

  • memory/1292-16-0x0000000000E80000-0x0000000000F1E000-memory.dmp

    Filesize

    632KB

    Download