1482c93c1a6feee47c14934c0c86ea6fae318cb0ac66ab40b8dbdc01c704c8a8 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

307ddad497...18.exe

windows7-x64

7

307ddad497...18.exe

windows10-2004-x64

7

Analysis

max time kernel
149s
max time network
151s
platform
windows10-2004_x64
resource
win10v2004-20240426-en
resource tags

arch:x64arch:x86image:win10v2004-20240426-enlocale:en-usos:windows10-2004-x64system
submitted
10/05/2024, 18:40

Sharing

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

307ddad4978be66ba0ec5b16bcd02ab7_JaffaCakes118.exe

Resource

win7-20240221-en

spyware stealer

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

307ddad4978be66ba0ec5b16bcd02ab7_JaffaCakes118.exe

Resource

win10v2004-20240426-en

spyware stealer

windows10-2004-x64

1 signatures

150 seconds

Report Analysis Logs

General

Target

307ddad4978be66ba0ec5b16bcd02ab7_JaffaCakes118.exe
Size

535KB
MD5

307ddad4978be66ba0ec5b16bcd02ab7
SHA1

a0bb91250ab1aa1c935a44d47969c49cadf57f68
SHA256

1482c93c1a6feee47c14934c0c86ea6fae318cb0ac66ab40b8dbdc01c704c8a8
SHA512

e7c12fefacf9495cf8c1d2c7f5c55df4929999711de22d798c88476c16ca83e9cdfe4eb722f2adc76d051bc31a4722bae84e00eca1e150a17d669af7c9a063c0
SSDEEP

12288:fIpUecFlD5o5ZboutjwjolfnrERuz1Odbyk:ecH5obdjGinQRuzQdbX

Score

7^/10

spyware stealer

Malware Config

Signatures

Reads user/profile data of web browsers 2 TTPs
Infostealers often target stored browser data, which can include saved credentials etc.
spyware stealer

Data from Local System
T1005

Credentials In Files
T1552.001

Processes

C:\Users\Admin\AppData\Local\Temp\307ddad4978be66ba0ec5b16bcd02ab7_JaffaCakes118.exe
"C:\Users\Admin\AppData\Local\Temp\307ddad4978be66ba0ec5b16bcd02ab7_JaffaCakes118.exe"
1⤵
PID:2700

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Temp\U4CD2.tmp\UNT4CD3.tmp.exe

Filesize
3KB

MD5
7d662787248dc76e9e77f04859b07c91

SHA1
8158c36cd380ac99199d7d9ef9677b0406c9665d

SHA256
06775c69e6cd6afc18e1ae44a27545304fe926a7356ee52b1ccabf15a209766b

SHA512
dde9515c719c4ff7b0f89156eb19a4a98a72c39f625ef2ed80b0f02b2e22ee86dc6a06b5fb11b0858b893c07444857638c4eaddef11728489f3800d37cc2f31b

Download Submit
C:\Users\Admin\AppData\Local\Temp\U4CD4.tmp\UNT4CD5.tmp.exe

Filesize
5KB

MD5
14d2f47c0fdd0285c3e535f63bd966c5

SHA1
b209f5122c33f190458df3bed581962a223f09e5

SHA256
5f454b1ff83417b2dc3c725310ca1d92ddaeaf23539f465e89ad1e9cbe880ab8

SHA512
226298166702653b01148e92adb452bf2e710352cb71cf2218d71cfbf5c390f82079713be5fce6e7859499cc2151a6a585cb83a1753b3208748a945c1d65f0e3

Download Submit
C:\Users\Admin\AppData\Local\Temp\U4CD6.tmp\UNT4CD7.tmp.exe

Filesize
947B

MD5
7462cae96b4c02764b9cdf7565cd2e5c

SHA1
675bc59e5fafcab1a693734833ec2dc23a035f83

SHA256
ba56b1b873be7fbf772ff341f0956f9d1896ff143f7a5e8d2da2e9327d5213e0

SHA512
0564b5f2aa0c24430402b8c8e524c4d6ed4e1e322e9016ba3b1f17f1fae21bbb2cec1b3a5291ab064bebf949f6cd85248d7c238d00b14871ebb2a46f49256822

Download Submit

© 2018-2025

Terms | Privacy