Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

23f52400f1...18.exe

windows7-x64

1

23f52400f1...18.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    134s
  • max time network
    130s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240611-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240611-enlocale:en-usos:windows10-2004-x64system
  • submitted
    04/07/2024, 00:09

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    23f52400f13b5f407d84ccc87f84d641_JaffaCakes118.exe

  • Size

    1.1MB

  • MD5

    23f52400f13b5f407d84ccc87f84d641

  • SHA1

    295b2ebb204af6fc438959108ec2bcfe05a58e2e

  • SHA256

    d2c843fdce934c1c00ba43e3e0e35a7737dbeeee95aee1eebd5dace7e7992e2c

  • SHA512

    ae6572be527bfb6516e2d2231eed76fa8e3c2921a432c4e99c034044ca653ff713f72ad742b99cc43d41e2342b9c4f7fe450377e8cc6f4788d6b5a5d876b5865

  • SSDEEP

    24576:L2gkfqixLpp2jt866yHPYqkll++vjUzEoc3lhymNolKwd:qxLujyryvYqkPhUOlh3NMfd

Score
1/10

Malware Config

Signatures

  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\23f52400f13b5f407d84ccc87f84d641_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\23f52400f13b5f407d84ccc87f84d641_JaffaCakes118.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:1304
  • C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe
    "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --field-trial-handle=4608,i,1305347165619645738,15927664461101562802,262144 --variations-seed-version --mojo-platform-channel-handle=4112 /prefetch:8
    1⤵
      PID:3088

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/1304-0-0x0000000000400000-0x0000000000765000-memory.dmp

      Filesize

      3.4MB

      Download

    • memory/1304-9-0x0000000002580000-0x0000000002581000-memory.dmp

      Filesize

      4KB

      Download

    • memory/1304-8-0x0000000000930000-0x0000000000980000-memory.dmp

      Filesize

      320KB

      Download

    • memory/1304-7-0x00000000035C0000-0x00000000035C1000-memory.dmp

      Filesize

      4KB

      Download

    • memory/1304-6-0x0000000002560000-0x0000000002561000-memory.dmp

      Filesize

      4KB

      Download

    • memory/1304-5-0x0000000002590000-0x0000000002591000-memory.dmp

      Filesize

      4KB

      Download

    • memory/1304-4-0x0000000002550000-0x0000000002551000-memory.dmp

      Filesize

      4KB

      Download

    • memory/1304-3-0x0000000000990000-0x0000000000991000-memory.dmp

      Filesize

      4KB

      Download

    • memory/1304-2-0x0000000000900000-0x0000000000901000-memory.dmp

      Filesize

      4KB

      Download

    • memory/1304-1-0x0000000000910000-0x0000000000911000-memory.dmp

      Filesize

      4KB

      Download

    • memory/1304-11-0x0000000000980000-0x0000000000981000-memory.dmp

      Filesize

      4KB

      Download

    • memory/1304-10-0x00000000035B0000-0x00000000035C9000-memory.dmp

      Filesize

      100KB

      Download

    • memory/1304-27-0x0000000002DE0000-0x0000000002DE1000-memory.dmp

      Filesize

      4KB

      Download

    • memory/1304-26-0x0000000002E10000-0x0000000002E11000-memory.dmp

      Filesize

      4KB

      Download

    • memory/1304-25-0x0000000002E00000-0x0000000002E01000-memory.dmp

      Filesize

      4KB

      Download

    • memory/1304-24-0x0000000002DF0000-0x0000000002DF1000-memory.dmp

      Filesize

      4KB

      Download

    • memory/1304-23-0x0000000002DB0000-0x0000000002DB1000-memory.dmp

      Filesize

      4KB

      Download

    • memory/1304-22-0x0000000002DC0000-0x0000000002DC1000-memory.dmp

      Filesize

      4KB

      Download

    • memory/1304-21-0x00000000025D0000-0x00000000025D1000-memory.dmp

      Filesize

      4KB

      Download

    • memory/1304-20-0x0000000002D60000-0x0000000002D61000-memory.dmp

      Filesize

      4KB

      Download

    • memory/1304-19-0x0000000002D90000-0x0000000002D91000-memory.dmp

      Filesize

      4KB

      Download

    • memory/1304-18-0x0000000002D50000-0x0000000002D51000-memory.dmp

      Filesize

      4KB

      Download

    • memory/1304-17-0x0000000002D40000-0x0000000002D41000-memory.dmp

      Filesize

      4KB

      Download

    • memory/1304-16-0x00000000025B0000-0x00000000025B1000-memory.dmp

      Filesize

      4KB

      Download

    • memory/1304-15-0x00000000025C0000-0x00000000025C1000-memory.dmp

      Filesize

      4KB

      Download

    • memory/1304-14-0x0000000002D80000-0x0000000002D81000-memory.dmp

      Filesize

      4KB

      Download

    • memory/1304-29-0x0000000000930000-0x0000000000980000-memory.dmp

      Filesize

      320KB

      Download

    • memory/1304-28-0x0000000000400000-0x0000000000765000-memory.dmp

      Filesize

      3.4MB

      Download