Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
92s -
max time network
93s -
platform
windows10-2004_x64 -
resource
win10v2004-20240508-en -
resource tags
-
submitted
31/05/2024, 13:58
General
-
Target
873e5f8f96da9ce1cef334eacacdb485_JaffaCakes118.exe
-
Size
17KB
-
MD5
873e5f8f96da9ce1cef334eacacdb485
-
SHA1
6595af739efe3e1ae284fdc2685fac179486fd24
-
SHA256
3b69560aa462f96e2d2f8bd47e3d1b4ff693d9b333945358943500286884b864
-
SHA512
915173facacbe9c104683a9be3dc8596f1050dc3d02ea9a9f748acd2a88f8f4221abd3abe52ceb1d5913016f2f183b23c789d136846c06c8f57bbea1620444ae
-
SSDEEP
96:CQrtbwnvB4KJISPXIZgDiBTmorNCJBmbpHCXz6FHcS0ev1z66a:CQBwnvBdf/IuDi1FZCJ0bpHhaS0evM6a
Malware Config
Signatures
-
Checks computer location settings 2 TTPs 1 IoCs
Looks up country code configured in the registry, likely geofence.
-
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).
Processes
-
C:\Users\Admin\AppData\Local\Temp\873e5f8f96da9ce1cef334eacacdb485_JaffaCakes118.exe"C:\Users\Admin\AppData\Local\Temp\873e5f8f96da9ce1cef334eacacdb485_JaffaCakes118.exe"1⤵
- Checks computer location settings
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
77B
MD5c34a8f7527346a7a86597c7b266cd505
SHA15c6c3678d3bd84e8cbad82d78cc415d93a827f97
SHA25615b6cbbf77423f1f3016da610453a64b3ce38e96863807f18ee5fa6b24c93ce9
SHA5124ea95f8d6b79d6a48c37ef79b22ef0e422ecf07fc9e5f5c3cd10c9476ef83a2d35fb1c449e5316efb49e108f564bbe2fd67bfeb6a3d787afcda08c703d24e5ad