Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

7

217c0e2e24...18.exe

windows7-x64

7

217c0e2e24...18.exe

windows10-2004-x64

8

Analysis

  • max time kernel
    119s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    03/07/2024, 07:08 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    217c0e2e24efa8adf943b06a52d90ff5_JaffaCakes118.exe

  • Size

    52KB

  • MD5

    217c0e2e24efa8adf943b06a52d90ff5

  • SHA1

    fa72574559fa74a466e3d9383b815851f17cd938

  • SHA256

    482cc820b3e990f47de336b0f0a439de425d6b4ad91a65afce63e667199b9388

  • SHA512

    7d7abf1942ed91b6818503509a7002ad8f50ade65abec15ac4b4106ef5e826b0605a235647853d007639311230cddd7635d12bda94069e7da4be13039e7792a7

  • SSDEEP

    1536:j8CGOtGKLqvwt9RfKjfI//jiSqi7o02486lmy:j8otGAqvw9BoI+Sqi7o0D3my

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 3 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Program crash 1 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\217c0e2e24efa8adf943b06a52d90ff5_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\217c0e2e24efa8adf943b06a52d90ff5_JaffaCakes118.exe"
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:2968
    • C:\Windows\SysWOW64\WerFault.exe
      C:\Windows\SysWOW64\WerFault.exe -u -p 2968 -s 140
      2⤵
      • Program crash
      PID:2748

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2968-0-0x0000000000400000-0x0000000000427000-memory.dmp

    Filesize

    156KB

    Download

  • memory/2968-1-0x0000000000400000-0x0000000000427000-memory.dmp

    Filesize

    156KB

    Download

  • memory/2968-2-0x0000000000400000-0x0000000000427000-memory.dmp

    Filesize

    156KB

    Download

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.