Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
141s -
max time network
153s -
platform
windows10-2004_x64 -
resource
win10v2004-20240412-en -
resource tags
arch:x64arch:x86image:win10v2004-20240412-enlocale:en-usos:windows10-2004-x64system -
submitted
20/04/2024, 02:59
Behavioral task
behavioral1
Sample
fbc80b842f542092d38bfa6b994dea8f_JaffaCakes118.exe
Resource
win7-20240215-en
Behavioral task
behavioral2
Sample
fbc80b842f542092d38bfa6b994dea8f_JaffaCakes118.exe
Resource
win10v2004-20240412-en
General
-
Target
fbc80b842f542092d38bfa6b994dea8f_JaffaCakes118.exe
-
Size
241KB
-
MD5
fbc80b842f542092d38bfa6b994dea8f
-
SHA1
781220a09e5d16e7bbfa5dd8f0a6183124553929
-
SHA256
214050a5b00176b2432be1eadd811b5670584dcb86927365a1a55987b0319ddc
-
SHA512
419ced5465a3b13b8edfcb0b91aa3df9c6ab7063b68fe2d83eb1015b80116d7d86307d4f386a11df3d3dc8b8b9ab437dc0ea9d21857428ec8d38e1c5d851374a
-
SSDEEP
6144:L3+Q0iMM49Gl5+tx7NY0/wZ7lzasLelmAw0dwzuiRfrF:DU5M4EHoxqoYMsLe00dWBfrF
Malware Config
Signatures
-
Checks processor information in registry 2 TTPs 3 IoCs
Processor information is often read in order to detect sandboxing environments.
description ioc Process Key opened \REGISTRY\MACHINE\hardware\description\system\centralprocessor\0 fbc80b842f542092d38bfa6b994dea8f_JaffaCakes118.exe Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\VendorIdentifier fbc80b842f542092d38bfa6b994dea8f_JaffaCakes118.exe Key value queried \REGISTRY\MACHINE\HARDWARE\DESCRIPTION\System\CentralProcessor\0\ProcessorNameString fbc80b842f542092d38bfa6b994dea8f_JaffaCakes118.exe