Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

7

0fd2a1e504...18.exe

windows7-x64

7

0fd2a1e504...18.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    149s
  • max time network
    152s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240508-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
  • submitted
    25/06/2024, 22:51

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0fd2a1e50423e2c644c38003ad3df376_JaffaCakes118.exe

  • Size

    960KB

  • MD5

    0fd2a1e50423e2c644c38003ad3df376

  • SHA1

    e8f5c74fabd32ad2697b60e766a2adaae57f283b

  • SHA256

    daa918d41a2193f189a527f0e727e514eff7135195699df4c48805a9fc6dc8ce

  • SHA512

    0829df1d7f4de72a729437a60cc147eed98d68019086f22d410fa8fe9910d4d4d17976ed4dbf395e26ca4606e6d12cd67e3a2b3e58739dcaaf58ae1033161ab8

  • SSDEEP

    24576:jbibbiuS5hwxDzWXNa4r+aSS66k+4OBCFV3Y2TOIJ94jzH:/ib2ugOm9Vnzk+LMYS7Jy

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 2 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx

Processes

  • C:\Users\Admin\AppData\Local\Temp\0fd2a1e50423e2c644c38003ad3df376_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\0fd2a1e50423e2c644c38003ad3df376_JaffaCakes118.exe"
    1⤵
      PID:5060

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • C:\6b996b325593dbb1e26615c7d25be484ba816358.ico
      Filesize

      2KB

      MD5

      5e36df46a75ea8a100aaa6e6ca7f750b

      SHA1

      57053ea84de3bae4df436019d099ddbdc768038c

      SHA256

      86663446bd58216e0a6f3e868180e7b18b2df53ee26baf4f8309020bef4f4fc8

      SHA512

      823dac22064087f719e5976214fd3b22e30ac3a7f0fd7647d89c1be22c470685f36258a715df16c93db535e64aaeb9ca77b3d8cfbf2b13038d1b577f374a462f

      Download Submit

    • memory/5060-0-0x0000000000400000-0x000000000066F000-memory.dmp

      Filesize

      2.4MB

      Download

    • memory/5060-3-0x0000000010000000-0x000000001002A000-memory.dmp

      Filesize

      168KB

      Download

    • memory/5060-7-0x00000000006C0000-0x00000000006CF000-memory.dmp

      Filesize

      60KB

      Download

    • memory/5060-10-0x0000000004660000-0x0000000004735000-memory.dmp

      Filesize

      852KB

      Download

    • memory/5060-13-0x0000000000CC0000-0x0000000000CCA000-memory.dmp

      Filesize

      40KB

      Download

    • memory/5060-28-0x0000000000400000-0x000000000066F000-memory.dmp

      Filesize

      2.4MB

      Download