327eb0fde9d6ba7eb883e099cac4a25165894b81a6b3517f072acb02eb13ff84 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

7

4732c7f901...18.exe

windows7-x64

7

4732c7f901...18.exe

windows10-2004-x64

7

Sharing

General

Target

4732c7f901bf1ea23ae2ff7674c66c1b_JaffaCakes118
Size

576KB
Sample

240714-272vcazaje
MD5

4732c7f901bf1ea23ae2ff7674c66c1b
SHA1

1a7112acf50c26996079d83706252f2bbd2d9c51
SHA256

327eb0fde9d6ba7eb883e099cac4a25165894b81a6b3517f072acb02eb13ff84
SHA512

c2cac5ed72a8384e295b948cd7a96f9c37393ab45c57cf4ad6bd42d9d939a2968fb96aeedfd06512c79940d377c3a86e5b91cf201c8a3872383d56f605d08355
SSDEEP

12288:oQUa/MA8yiWmDUy9L3BRDhizGJ4JCUD3dzr3/ZX7du227cB:oQf/hF4/hihJCMNz7/ZrduJYB

Score

7^/10

spyware stealer upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

4732c7f901bf1ea23ae2ff7674c66c1b_JaffaCakes118.exe

Resource

win7-20240708-en

spyware stealer upx

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

4732c7f901bf1ea23ae2ff7674c66c1b_JaffaCakes118.exe

Resource

win10v2004-20240709-en

spyware stealer upx

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  4732c7f901bf1ea23ae2ff7674c66c1b_JaffaCakes118
- Size
  
  576KB
- MD5
  
  4732c7f901bf1ea23ae2ff7674c66c1b
- SHA1
  
  1a7112acf50c26996079d83706252f2bbd2d9c51
- SHA256
  
  327eb0fde9d6ba7eb883e099cac4a25165894b81a6b3517f072acb02eb13ff84
- SHA512
  
  c2cac5ed72a8384e295b948cd7a96f9c37393ab45c57cf4ad6bd42d9d939a2968fb96aeedfd06512c79940d377c3a86e5b91cf201c8a3872383d56f605d08355
- SSDEEP
  
  12288:oQUa/MA8yiWmDUy9L3BRDhizGJ4JCUD3dzr3/ZX7du227cB:oQf/hF4/hihJCMNz7/ZrduJYB
Score

7^/10

spyware stealer upx
- Loads dropped DLL
- Reads user/profile data of web browsers
  Infostealers often target stored browser data, which can include saved credentials etc.
  spyware stealer
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Unsecured Credentials

Credentials In Files

Discovery

System Information Discovery

Lateral Movement

Collection

Data from Local System

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

spywarestealerupx

behavioral2

spywarestealerupx

© 2018-2025

Terms | Privacy