Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

6

Static

static

3

35e61a4ee5...18.exe

windows7-x64

6

35e61a4ee5...18.exe

windows10-2004-x64

6

Analysis

  • max time kernel
    117s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    10/07/2024, 18:34

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    35e61a4ee5e0376354ac2ede114cd6d3_JaffaCakes118.exe

  • Size

    72KB

  • MD5

    35e61a4ee5e0376354ac2ede114cd6d3

  • SHA1

    bf33118da46d6c79cd072728bacde55ab9979276

  • SHA256

    c4f4e181ab063a21ca99caf9d27e368098f85adedd4e33f654edca15c5734af2

  • SHA512

    43a0ae4e460e6937384c2a87763f076e192b9f97c2a0b0f91882ea7f414cd004d54e17e1e20616ce1773808a061d976b1ca257dbc1e78b19bbc875b6b3ed4209

  • SSDEEP

    768:AJeugseulKeu/Zq0tcitnb6XU9Ugucg2CeNwIoVrO9UgucCtnb6XjtcKeu/Zqvet:A0ZfciZbuag8NwZrPaCZbGcEZ

Score
6/10
persistence

Malware Config

Signatures

  • Adds Run key to start application 2 TTPs 1 IoCs
    persistence
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\35e61a4ee5e0376354ac2ede114cd6d3_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\35e61a4ee5e0376354ac2ede114cd6d3_JaffaCakes118.exe"
    1⤵
    • Adds Run key to start application
    • Suspicious use of SetWindowsHookEx
    PID:3012

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads