Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

2a2302639e...18.exe

windows7-x64

1

2a2302639e...18.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    150s
  • max time network
    150s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240426-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240426-enlocale:en-usos:windows10-2004-x64system
  • submitted
    09/05/2024, 13:17

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2a2302639e5f156276f27d8f06a5a9e7_JaffaCakes118.exe

  • Size

    714KB

  • MD5

    2a2302639e5f156276f27d8f06a5a9e7

  • SHA1

    98f8fd45341e67fe3f1842bbb8a40eea26904204

  • SHA256

    0e2bfc940e1d66352b3ee2557b4d4fa75c4b2d46f1c7329a99ca93241deafc8d

  • SHA512

    01c41542585346133855c780a35ddee912d2641454c0358f5e90d5f6b455e981eb3998c048dd6f77df6b97438898d16ac950339b64b7d14158bc1278ced364a5

  • SSDEEP

    12288:ck578/9eqv0lB0lFgjpf9Aq72ggtAU3eEaeq3HZkmLKSWekSj:c8O9eZlBggd9QgA3PbkWmKQ

Score
1/10

Malware Config

Signatures

  • Suspicious use of SetWindowsHookEx 3 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\2a2302639e5f156276f27d8f06a5a9e7_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\2a2302639e5f156276f27d8f06a5a9e7_JaffaCakes118.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:3968

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\noos.ini
    Filesize

    6KB

    MD5

    86a01bfce474da315ea90e9afbcaa678

    SHA1

    d26fb29731fa772a0805762dd12e17a2f762ed73

    SHA256

    a67577e5a07595268804852e0caff4eeae8e1c649dce6c58129d561a05c73286

    SHA512

    39d6fe6670de73de188fa05bf30d0b991abd1a7acde9f391ac006653a816d843d1b6d1bda487e1b43d319a843187b54afc10cd74c9e63853594b46e03bf2bac5

    Download Submit

  • memory/3968-0-0x0000000002310000-0x0000000002311000-memory.dmp

    Filesize

    4KB

    Download

  • memory/3968-353-0x0000000000400000-0x00000000004B9000-memory.dmp

    Filesize

    740KB

    Download

  • memory/3968-355-0x0000000002310000-0x0000000002311000-memory.dmp

    Filesize

    4KB

    Download