Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

2ffc1754ab...18.exe

windows7-x64

1

2ffc1754ab...18.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    09/07/2024, 10:20

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2ffc1754abfdd9ba1208cf64001c64a0_JaffaCakes118.exe

  • Size

    25KB

  • MD5

    2ffc1754abfdd9ba1208cf64001c64a0

  • SHA1

    55fd0f1dae2e88a65ba28d339d427922ff106689

  • SHA256

    458ef20cb1d2903a9d5025e3ce9f1ab715ec96dde0fca294daed15007ef6a61f

  • SHA512

    8ac4e572ed1570731528fb95bd88fae55630132621741b303adcdaf70b3f95445200e267efd0921bbbda0560703fafaf7d050051b1976f765565c0983faa778b

  • SSDEEP

    192:iWovrqyS06V/YJs0nuVoeVqFow6G7e2B0pZHaMYwrBR+lF0VoSN/5G9wywaqL/sx:dMuX5oF/MYyBRzN/5G9wpL0lHipIp

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 1 IoCs
  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\2ffc1754abfdd9ba1208cf64001c64a0_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\2ffc1754abfdd9ba1208cf64001c64a0_JaffaCakes118.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of AdjustPrivilegeToken
    PID:2384

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\84EXSCRK\showthread[1].htm
    Filesize

    18KB

    MD5

    f3c691fbd399f30e6961d39c4ce12bcf

    SHA1

    0d81278da6ba832c58702fb824e0b8038bbb9ad7

    SHA256

    2b8f8f87bbdf37a8141243525cdf842eb858d56a47e19269c2127064bd520c78

    SHA512

    04353ee529073454d52de94e8117fffafaaa30810be1a8e30ab81f47db17455e03570444d8ecb446f77baa838ac1fd73dacaeaa024fdcf892fac81e917fd746d

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\~!#C3B1.tmp
    Filesize

    18KB

    MD5

    5790d8cc203d7e0bbc2fab4ece12f75c

    SHA1

    f40accbdb8e76f3865161d02b3c2cceb9c4e79d4

    SHA256

    bc7cb9d3a9417fe9b863c8b74dd8ec9cf4203e69c3511ed76481b9543ebf1527

    SHA512

    9f9a242904869bda247ce9b4382b09f6784dda70087c7e5e69798f303ddad3e92e3196ce46bc35baba32b00b85819b56d5678f19ad62b7bb31aff6a69cde19eb

    Download Submit

  • memory/2384-0-0x0000000000240000-0x0000000000242000-memory.dmp

    Filesize

    8KB

    Download

  • memory/2384-165-0x0000000000240000-0x0000000000242000-memory.dmp

    Filesize

    8KB

    Download