Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

7

1fb3a12d6d...18.exe

windows7-x64

7

1fb3a12d6d...18.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    140s
  • max time network
    122s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240419-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240419-enlocale:en-usos:windows10-2004-x64system
  • submitted
    07/05/2024, 06:14

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1fb3a12d6d8dd65003659dd0ea1290f5_JaffaCakes118.exe

  • Size

    672KB

  • MD5

    1fb3a12d6d8dd65003659dd0ea1290f5

  • SHA1

    9c93b9bd888aa2d74348dbd40cf474cafcbe9973

  • SHA256

    1348feb763b2e247dafdda9aa50bf2c25ec0ebe4e2f3efa92a9a2939ee3bcd16

  • SHA512

    6a1356fd34d17a0d47b8c5cd455073ecae2c45b424dd2f4988d478c961ce631ff0e0ccfb4cae446b24c1fc5322bbc1c378c46080658a6374c42720fdf2547544

  • SSDEEP

    12288:ofVL4g9aK8rt5XWRabp22lW5H96yO/jJ3cWYW0f4mmrpKGo2moMY5YW6N8fwMg:G4g9aD0T5d5O/jJs4ev7G2ob5YLNJMg

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 2 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx

Processes

  • C:\Users\Admin\AppData\Local\Temp\1fb3a12d6d8dd65003659dd0ea1290f5_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\1fb3a12d6d8dd65003659dd0ea1290f5_JaffaCakes118.exe"
    1⤵
      PID:3792

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/3792-0-0x0000000000400000-0x00000000004D5000-memory.dmp

      Filesize

      852KB

      Download

    • memory/3792-1-0x0000000000B20000-0x0000000000B21000-memory.dmp

      Filesize

      4KB

      Download

    • memory/3792-2-0x0000000000400000-0x00000000004D5000-memory.dmp

      Filesize

      852KB

      Download

    • memory/3792-4-0x0000000000B20000-0x0000000000B21000-memory.dmp

      Filesize

      4KB

      Download