Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

7

9ce58cce64...18.exe

windows7-x64

7

9ce58cce64...18.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    140s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240419-en
  • resource tags

    arch:x64arch:x86image:win7-20240419-enlocale:en-usos:windows7-x64system
  • submitted
    11/06/2024, 03:50 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    9ce58cce64b73d17d924aac203807657_JaffaCakes118.exe

  • Size

    144KB

  • MD5

    9ce58cce64b73d17d924aac203807657

  • SHA1

    fb74920e4323dc2c2926f2c2849f0c2421eefa5c

  • SHA256

    5681aff1b1ed5b6dfe345d3b0347f7d06873bd00eb21a41ab451b5957e1e8671

  • SHA512

    4892a64f22fb3410445f1fa7b7014af969720ddd6d39adb53881f3f1b507631b20882cc2c11b3bd3c8178e6ca2a17305b68187925ea71f7a260b04e08389c243

  • SSDEEP

    3072:E+Y7eG1F3DqY4NIvrVwYDNN3uKjdS1q4u/XV2K17Ty/Oy/jsoAOY7Be:E7z1pewDVwYD3+yeuvVd17tIjO8

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 2 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Suspicious use of AdjustPrivilegeToken 1 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\9ce58cce64b73d17d924aac203807657_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\9ce58cce64b73d17d924aac203807657_JaffaCakes118.exe"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    • Suspicious use of SetWindowsHookEx
    PID:1992

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1992-0-0x0000000000400000-0x0000000000464000-memory.dmp

    Filesize

    400KB

    Download

  • memory/1992-3-0x0000000000400000-0x0000000000464000-memory.dmp

    Filesize

    400KB

    Download

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.