Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

333011c779...18.exe

windows7-x64

1

333011c779...18.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    10/07/2024, 03:47 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    333011c779f0c4bfb78e453453eb088f_JaffaCakes118.exe

  • Size

    91KB

  • MD5

    333011c779f0c4bfb78e453453eb088f

  • SHA1

    bff18630695130f26ee31ca9b73010caaf6b80f9

  • SHA256

    b2b8d80de2c178035484798dd797187b6e3cd06a0c394b8f1a4d1d691fd98990

  • SHA512

    c6f80538481584cdea79eab3b1eaf95f6682fa4d597e076bf20708bf1d18f1af6270778dc8edf4ac637d3bcf0f2274804195282aae6d281f9ea4b5a9936d964d

  • SSDEEP

    1536:EGwtRxOBJyypgmDjVwCfIAIYfGJmIMWtEMfgjtEFm:NwtRonyypexoiNtxYGm

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 1 IoCs
  • Suspicious behavior: MapViewOfSection 1 IoCs
  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\333011c779f0c4bfb78e453453eb088f_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\333011c779f0c4bfb78e453453eb088f_JaffaCakes118.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious behavior: MapViewOfSection
    • Suspicious use of AdjustPrivilegeToken
    PID:2692

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.