ba1cc06a5648ed525b2a32070551ec30a98a2ff728740f96175be56b05f38156 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

9

Static

static

3

42f77d5c3d...18.exe

windows7-x64

9

42f77d5c3d...18.exe

windows10-2004-x64

9

Sharing

General

Target

42f77d5c3d0256584a1f0da8389b63db_JaffaCakes118.exe
Size

78KB
Sample

240504-x2ltqagb61
MD5

42f77d5c3d0256584a1f0da8389b63db
SHA1

604bd4e21741bf760a9aec0e8a8384fda57e76da
SHA256

ba1cc06a5648ed525b2a32070551ec30a98a2ff728740f96175be56b05f38156
SHA512

af30043845c1d84f412eb4064277f360707b1f0c6a3ef3fb267f41fb3d1fe7edd07f0f902d9b6d7db84f95aee8f37ae840e9fae963a78a76884133804d42f211
SSDEEP

768:W7BlphA7pARFbhOm0CAbLg99gwVHyVnSQTQbzjrY/+TQbzjrY/Rc3Sox/6Sox/qv:W7ZhA7pApH1IwVHykEElEa0NQn0NQN6t

Score

9^/10

ransomware

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

42f77d5c3d0256584a1f0da8389b63db_JaffaCakes118.exe

Resource

win7-20240221-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral2

Sample

42f77d5c3d0256584a1f0da8389b63db_JaffaCakes118.exe

Resource

win10v2004-20240419-en

windows10-2004-x64

2 signatures

150 seconds

Malware Config

Targets

- Target
  
  42f77d5c3d0256584a1f0da8389b63db_JaffaCakes118.exe
- Size
  
  78KB
- MD5
  
  42f77d5c3d0256584a1f0da8389b63db
- SHA1
  
  604bd4e21741bf760a9aec0e8a8384fda57e76da
- SHA256
  
  ba1cc06a5648ed525b2a32070551ec30a98a2ff728740f96175be56b05f38156
- SHA512
  
  af30043845c1d84f412eb4064277f360707b1f0c6a3ef3fb267f41fb3d1fe7edd07f0f902d9b6d7db84f95aee8f37ae840e9fae963a78a76884133804d42f211
- SSDEEP
  
  768:W7BlphA7pARFbhOm0CAbLg99gwVHyVnSQTQbzjrY/+TQbzjrY/Rc3Sox/6Sox/qv:W7ZhA7pApH1IwVHykEElEa0NQn0NQN6t
Score

9^/10

ransomware
- Renames multiple (3551) files with added filename extension
  This suggests ransomware activity of encrypting all the files on the system.
  ransomware
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy