Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

7

0e23821920...18.exe

windows7-x64

7

0e23821920...18.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    147s
  • max time network
    151s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240508-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
  • submitted
    25/06/2024, 12:49 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0e23821920dcdee4d1847ff59fe6746d_JaffaCakes118.exe

  • Size

    847KB

  • MD5

    0e23821920dcdee4d1847ff59fe6746d

  • SHA1

    f84339597cec55eaef3032f91307058499ef6b5c

  • SHA256

    d28f731b8ce9007954d73a524bd583afd1cef384b935091e6c20483d9194e343

  • SHA512

    c61fb193b07f3ec3d3171b02023626d83a282b40c8aafe43163fdbec32d35acb2f4a3f408b2a846b31c32f27a88d1259210be5b8ba56ab79d5ceb7ed1a19e6b0

  • SSDEEP

    24576:uFE//Tct4bOskEAXAwhxM0scNJniSf4bZoSyLve:ESVpCpjJnfW

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 2 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • AutoIT Executable 1 IoCs

    AutoIT scripts compiled to PE executables.

  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

Processes

  • C:\Users\Admin\AppData\Local\Temp\0e23821920dcdee4d1847ff59fe6746d_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\0e23821920dcdee4d1847ff59fe6746d_JaffaCakes118.exe"
    1⤵
      PID:2740

    Network

    MITRE ATT&CK Enterprise v15

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/2740-0-0x0000000000400000-0x00000000004BF000-memory.dmp

      Filesize

      764KB

      Download

    • memory/2740-1-0x0000000000400000-0x00000000004BF000-memory.dmp

      Filesize

      764KB

      Download

    We care about your privacy.

    This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.