Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
93s -
max time network
127s -
platform
windows10-2004_x64 -
resource
win10v2004-20240704-en -
resource tags
-
submitted
08/07/2024, 13:57
General
-
Target
2c9d19f339a487b4c771f4baa1c94802_JaffaCakes118.exe
-
Size
742KB
-
MD5
2c9d19f339a487b4c771f4baa1c94802
-
SHA1
580027f52f3525bb2ceb24229e01bbd0783fb300
-
SHA256
2b1dfb703c265f43702a3280bf018c0e0ff0fa8813568c21fe7ebff1a3720935
-
SHA512
f5cc37bc56c2ab576061643ab2c6f54a08280a999be2e81a5e3f09eec79dea218d8507ccd494a002d51e8e9712f07e8bdd8d1c79c256b48d2b59c288dfe2ae63
-
SSDEEP
12288:ZdfL9wskzRyeMS+5JlxMs3ofBTJfm71SAim+fADJqmU2l2+DRD2gx:ZdfL9w7ceT+BKdJe71ziX4B4+VD2i
Malware Config
Signatures
-
Loads dropped DLL 1 IoCs
-
Program crash 1 IoCs
Processes
-
C:\Users\Admin\AppData\Local\Temp\2c9d19f339a487b4c771f4baa1c94802_JaffaCakes118.exe"C:\Users\Admin\AppData\Local\Temp\2c9d19f339a487b4c771f4baa1c94802_JaffaCakes118.exe"1⤵
- Loads dropped DLL
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -u -p 1420 -s 6362⤵
- Program crash
-
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -pss -s 460 -p 1420 -ip 14201⤵
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
108KB
MD507eca265b34fd24686eb79238b9bad01
SHA11367c01719697d2c97fc6f7c8628f85ccdd5ede2
SHA256ec2fe22ca1032eefcfecf43a73341e2683fc1a0b9c87be21b94cbd35dc5a55a3
SHA51287c5c15f19a29ddf1144c769d171c2202cfdab638b257c1aab5d343c403540456c9c44ee70aa30cd9b07d8676f7b0527297deb4e87aef9a19f446cd3e6e8f22f