Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

63c67ce313...18.exe

windows7-x64

1

63c67ce313...18.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    92s
  • max time network
    137s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240508-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
  • submitted
    21/05/2024, 15:23

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    63c67ce3132c136112f0b6194d639b69_JaffaCakes118.exe

  • Size

    980KB

  • MD5

    63c67ce3132c136112f0b6194d639b69

  • SHA1

    ebefba0dd763f06c89cb87e7392b155364171d4f

  • SHA256

    dece18fb547b18f05173e80d8568856d9d5b515ce09c896b0deb281722916206

  • SHA512

    af94ced5950bbeb0adaea9321dd0b362871120338fe2947dd5b1553a2de1d53a5a042c411cfd53a4a7ac8244a5996499a9a7af920e171545a6be18dca28ca507

  • SSDEEP

    12288:0JUshUFTJ2OE7YSltMgHCpF+TYLdUZk5Sl4qhA3qWdFjs+v9NRzDR4HHDohlAA6h:Bst7YSNIu+v9NxRkjohSbbMGzkrCr

Score
1/10

Malware Config

Signatures

  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\63c67ce3132c136112f0b6194d639b69_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\63c67ce3132c136112f0b6194d639b69_JaffaCakes118.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:4592

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/4592-0-0x0000000000400000-0x00000000004FC000-memory.dmp

    Filesize

    1008KB

    Download

  • memory/4592-1-0x0000000000400000-0x00000000004FC000-memory.dmp

    Filesize

    1008KB

    Download

  • memory/4592-72-0x0000000000400000-0x00000000004FC000-memory.dmp

    Filesize

    1008KB

    Download