Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
120s -
max time network
121s -
platform
windows7_x64 -
resource
win7-20231129-en -
resource tags
-
submitted
16/05/2024, 04:45
General
-
Target
4976bf4d41ebf320dcf411c196643f66_JaffaCakes118.pdf
-
Size
46KB
-
MD5
4976bf4d41ebf320dcf411c196643f66
-
SHA1
92fb6f8dbafb558d9e5443b8a1c47856699a58af
-
SHA256
f8c8a1de427dafe994a1c77f8c6b38c3580d27c874f4e2269a5f2449e2ec7052
-
SHA512
2255338fea5520ff094fc6be4f90e25e3ab01352c45185b5a86d50eb79034d2bb323c73b6f2a34b7de04e098dfc8bd6211200b6fb3b9c8dc32c29ea392e07af5
-
SSDEEP
768:dLG+lpRCODkfr5Aog3zK+yXrn0HRewV3cCAIR2ocP9+cQ7S29xWLrGRCVuSE5fXr:lp8ODk9Aog3zK+yXrn0HRewV3cCAIRVD
Malware Config
Signatures
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
-
Suspicious use of SetWindowsHookEx 3 IoCs
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\4976bf4d41ebf320dcf411c196643f66_JaffaCakes118.pdf"1⤵
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD5e0b9e3ec013c8edef3e4c3b9923c1008
SHA1d1f78c23e8bb09e770ed2f9ae89278d12eeca461
SHA25622053b587e3598752728378d65b65413c03ccbb64ffa285ef9560c16df3c1801
SHA512c4837e3e96a6f8a14b8bff36878237b1fb64604b0b85b9c2c17969f2cca9da0e6da435285f732ba45dfb670f5da70623c23cbea59a246194eccead898ec5eb66