Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

1

Static

static

1

2f8b655bcd...18.exe

windows7-x64

1

2f8b655bcd...18.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    141s
  • max time network
    142s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    09/07/2024, 07:55

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2f8b655bcdeed124528050f98fe27074_JaffaCakes118.exe

  • Size

    625KB

  • MD5

    2f8b655bcdeed124528050f98fe27074

  • SHA1

    54de69db02255a71f1b3590cbff4c58e9c249921

  • SHA256

    bcde792d36f99a626fc16759bcd01881105d65431d252f7a0789a4bd0406ff20

  • SHA512

    c3ed48164df132aa93002668fb0c2d227fd34887f013f95d977c671baffaf3311d59761eb7819711416625a2bdcc51ac0a6d666a68c1440cdde58fcd17d58e22

  • SSDEEP

    12288:3VfdxeaKrd9Qbkv+7JYipP9UWyKQjHg0eTt9dhQnoq0eT/SpRc:3V1x1Krd9QbkvQJY87y5jHgl9dhXY8c

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 1 IoCs
  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\2f8b655bcdeed124528050f98fe27074_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\2f8b655bcdeed124528050f98fe27074_JaffaCakes118.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of SetWindowsHookEx
    PID:2396

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\offconfig.temp
    Filesize

    41KB

    MD5

    a9578dd8f03f8af2edb0911d7bfc1705

    SHA1

    0c199a3de0d6c6cee26a92a4fef602507d4ace2c

    SHA256

    b8835745da7b6d028b2448d95baf960c19ee15f1d396814bd5c62f0e3b476f82

    SHA512

    181abf35c8a67c81e5fd7bb49383034285597f9738e3c529f0e8fd5f461763cc0ebcc92d72ce6399f98ae332e67d2bdef3025a94224693c8d7849a0db441b656

    Download Submit