Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

06f52941a6...18.exe

windows7-x64

1

06f52941a6...18.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    20/06/2024, 14:46

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    06f52941a66f78857cf5f38fd77707db_JaffaCakes118.exe

  • Size

    624KB

  • MD5

    06f52941a66f78857cf5f38fd77707db

  • SHA1

    1bbe7ade5136cc8b686639c55bdc04462c7d7a3f

  • SHA256

    acea3b67271a304203c3f8d4e665fc071c8cf62b275698c363cea569715d6992

  • SHA512

    6fd3aecf2a2d85a4570ffc2abf59d3819cbd234296adde98f4552f3a9ea70365ba8e121111fedbc01caa26387477f65a0dc33035d26bcfb951a82df4fe0b804b

  • SSDEEP

    12288:nxpNWAGPBelccX+01JO7JY2QYrs01wOEk6+4nOcnDcPRnMpn0:nxpNWLPBelccX+01JAJYpv01wOEk6gcc

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 1 IoCs
  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\06f52941a66f78857cf5f38fd77707db_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\06f52941a66f78857cf5f38fd77707db_JaffaCakes118.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of SetWindowsHookEx
    PID:2296

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\offconfig.temp
    Filesize

    582B

    MD5

    2af0199f4e31d34c8375d115fd4fdc35

    SHA1

    9ce806de036431cd09321133d9d4072a799433a9

    SHA256

    4b12a15561dd929d7c3b3a9f43523ad022ae0fdea85306ef82113ba50feb17b2

    SHA512

    49c5d293a16b746587d8f8d8f7a56c74e2dc130687d8324332da11658935b8d9dc863e2c961cd7103ce22dec81c814cdcbb156e6c1ac7f77b7c31186285747ef

    Download Submit