Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
120s -
max time network
121s -
platform
windows7_x64 -
resource
win7-20240611-en -
resource tags
-
submitted
16/06/2024, 01:47 UTC
General
-
Target
b12c69c9d1ee87cbf8cde21b30df431b_JaffaCakes118.exe
-
Size
417KB
-
MD5
b12c69c9d1ee87cbf8cde21b30df431b
-
SHA1
b46e916024e1861d9f98350566eebdb2040bd585
-
SHA256
10229915efb85f712ca194f65ea3e71d919b911203413b1068f56fc9f53f2b65
-
SHA512
e59f6f0634974bd323678454c565c61cbdfe92f4ce93b059d69d27d8d803377f5e6731dfc6e87f0190c47cbcde7ba282e7eaef56332594bc43b7cb85f1808ae8
-
SSDEEP
12288:Yuq4L2ARhU13JL/DwimyZAEjKWc112if3:jJyAodhr9ZvY12if3
Score
1/10
Malware Config
Signatures
Processes
-
C:\Users\Admin\AppData\Local\Temp\b12c69c9d1ee87cbf8cde21b30df431b_JaffaCakes118.exe"C:\Users\Admin\AppData\Local\Temp\b12c69c9d1ee87cbf8cde21b30df431b_JaffaCakes118.exe"1⤵
Network
-
DNSjunglenet-a.akamaihd.netRemote address:8.8.8.8:53Requestjunglenet-a.akamaihd.netIN AResponsejunglenet-a.akamaihd.netIN CNAMEjunglenet-a.akamaihd.net.edgesuite.netjunglenet-a.akamaihd.net.edgesuite.netIN CNAMEa803.d.akamai.neta803.d.akamai.netIN A96.16.53.146a803.d.akamai.netIN A96.16.53.158 -
POSThttp://junglenet-a.akamaihd.net/ahRemote address:96.16.53.146:80RequestPOST /ah HTTP/1.1
Cache-Control: no-cache
Connection: Keep-Alive
Pragma: no-cache
Content-Type: application/x-www-form-urlencoded
Accept: text/plain
User-Agent: winhttp
Content-Length: 273
Host: junglenet-a.akamaihd.net
ResponseHTTP/1.1 200 OK
Content-Type: text/plain
Access-Control-Allow-Origin: *
p3p: CP="CAO PSA OUR"
Content-Length: 0
Expires: Sun, 16 Jun 2024 01:47:19 GMT
Cache-Control: max-age=0, no-cache, no-store
Pragma: no-cache
Date: Sun, 16 Jun 2024 01:47:19 GMT
Connection: keep-alive
-
96.16.53.146:80http://junglenet-a.akamaihd.net/ahhttp
HTTP Request
POST http://junglenet-a.akamaihd.net/ahHTTP Response
200
-
8.8.8.8:53junglenet-a.akamaihd.netdns
DNS Request
junglenet-a.akamaihd.net
DNS Response
96.16.53.14696.16.53.158