Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

2ff2274fb3...18.exe

windows7-x64

1

2ff2274fb3...18.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    149s
  • max time network
    153s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240704-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240704-enlocale:en-usos:windows10-2004-x64system
  • submitted
    09/07/2024, 10:08

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2ff2274fb32dff6eac7c95ee7bed9859_JaffaCakes118.exe

  • Size

    166KB

  • MD5

    2ff2274fb32dff6eac7c95ee7bed9859

  • SHA1

    6bc74906bb6fa305f39d995db27cd4bb45a37f9a

  • SHA256

    ca7499e7cbc93aa97fa5d20b42ee0a7f18dd4e5588c84027ab08cccfdf0e60a0

  • SHA512

    74f67c284d150dc9716c9d65d1f4dd9dc0ef5bc205d9b3e1aa426a1fb9ceba6e52d28e24a07708b224812a1a8265a4bc0c8c4edcb42cefc0d8ca388f4f58a56e

  • SSDEEP

    3072:IgKnPsoIsbFzkcafX/1xoTDviSO0M14AcdGpZo09Hfio54LXb94ydlQRTf:YFWb1cKS5M14Ac8wMHfiUmXb5lQRz

Score
1/10

Malware Config

Signatures

  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\2ff2274fb32dff6eac7c95ee7bed9859_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\2ff2274fb32dff6eac7c95ee7bed9859_JaffaCakes118.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:4972

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/4972-0-0x0000000000400000-0x000000000049C962-memory.dmp

    Filesize

    626KB

    Download

  • memory/4972-1-0x0000000000401000-0x0000000000473000-memory.dmp

    Filesize

    456KB

    Download

  • memory/4972-2-0x0000000000400000-0x000000000049C962-memory.dmp

    Filesize

    626KB

    Download

  • memory/4972-3-0x0000000000401000-0x0000000000473000-memory.dmp

    Filesize

    456KB

    Download