3e4e4b7c305b2f4e43ddc81bd06b364138a122a476419cd54c2e624d359584d9 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

27b06b55ed...18.exe

windows7-x64

7

27b06b55ed...18.exe

windows10-2004-x64

7

Sharing

General

Target

27b06b55ed6b50ad7df0d74062bd61c8_JaffaCakes118
Size

903KB
Sample

240706-h2n7hszfll
MD5

27b06b55ed6b50ad7df0d74062bd61c8
SHA1

293194543a2fa5b156fa42455a31e03e3be5718c
SHA256

3e4e4b7c305b2f4e43ddc81bd06b364138a122a476419cd54c2e624d359584d9
SHA512

a68e1750faaf027ee43a12e5fc7c8e4ca3c8fe7d0534e0e09032d9ee9f521566c2f0d3482e449a234495d7e3d4f59f04d8b5ce365c322b68110d22b786741247
SSDEEP

12288:YwG7ARCTY01Jklgo7F4uK5Iu2QFh9U73S7lCCsvs1val5JIk+CTK5+ZNAc7y:pGEUTY00NklCCsk1va5V+S6+ZicO

Score

7^/10

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

27b06b55ed6b50ad7df0d74062bd61c8_JaffaCakes118.exe

Resource

win7-20240705-en

windows7-x64

10 signatures

150 seconds

Behavioral task

behavioral2

Sample

27b06b55ed6b50ad7df0d74062bd61c8_JaffaCakes118.exe

Resource

win10v2004-20240704-en

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  27b06b55ed6b50ad7df0d74062bd61c8_JaffaCakes118
- Size
  
  903KB
- MD5
  
  27b06b55ed6b50ad7df0d74062bd61c8
- SHA1
  
  293194543a2fa5b156fa42455a31e03e3be5718c
- SHA256
  
  3e4e4b7c305b2f4e43ddc81bd06b364138a122a476419cd54c2e624d359584d9
- SHA512
  
  a68e1750faaf027ee43a12e5fc7c8e4ca3c8fe7d0534e0e09032d9ee9f521566c2f0d3482e449a234495d7e3d4f59f04d8b5ce365c322b68110d22b786741247
- SSDEEP
  
  12288:YwG7ARCTY01Jklgo7F4uK5Iu2QFh9U73S7lCCsvs1val5JIk+CTK5+ZNAc7y:pGEUTY00NklCCsk1va5V+S6+ZicO
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy