Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

456f8ce392...18.exe

windows7-x64

1

456f8ce392...18.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    149s
  • max time network
    149s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240709-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240709-enlocale:en-usos:windows10-2004-x64system
  • submitted
    14/07/2024, 10:33

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    456f8ce39234edf5234650532b8004aa_JaffaCakes118.exe

  • Size

    549KB

  • MD5

    456f8ce39234edf5234650532b8004aa

  • SHA1

    4db1eff8b704d439bc06a348b707d3dfa86e15e0

  • SHA256

    da2e679b3e9113d736e85298168eef56d4d11eb562075182005b41c403a45ee8

  • SHA512

    73b890bbd6d7d90036447a2cf59e20e97a92e26293ff8a44fc40f007478839aafbd10348151202bcce0e1bfd4cccd8f239ae42501cd1c6aa25e7334a4d21f521

  • SSDEEP

    12288:JEAvnWWj6J5Cm1xHoxG1/cWAd99yaZ5biZZsHhCQ:GAP6HCm12G1fABHZ5WZZmC

Score
1/10

Malware Config

Signatures

  • Suspicious use of FindShellTrayWindow 64 IoCs
  • Suspicious use of SendNotifyMessage 64 IoCs
  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\456f8ce39234edf5234650532b8004aa_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\456f8ce39234edf5234650532b8004aa_JaffaCakes118.exe"
    1⤵
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    • Suspicious use of SetWindowsHookEx
    PID:4464

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\CCProxy.ini
    Filesize

    2KB

    MD5

    85ac923f0c15dcc5c6b9947153e64bcd

    SHA1

    29ed6d0c35283b0eb55c6f68f574b3f041871a27

    SHA256

    d4324c595c187cb358009cda11b834c3a3a42f8eb9a7ba3616bbc17a4b552a10

    SHA512

    f1fef00b09a38e7bed76c15bd0f787e13b3a902626c97a3ce606869d06a91657d1fcd7910cf112cb05fb7e6b05c689dbaa95da13f67b3a6234126f6216af7d40

    Download Submit

  • memory/4464-367-0x0000000000400000-0x00000000005CEF40-memory.dmp

    Filesize

    1.8MB

    Download

  • memory/4464-465-0x0000000000400000-0x00000000005CEF40-memory.dmp

    Filesize

    1.8MB

    Download

  • memory/4464-4-0x0000000000400000-0x00000000005CEF40-memory.dmp

    Filesize

    1.8MB

    Download

  • memory/4464-3-0x0000000000400000-0x00000000005CEF40-memory.dmp

    Filesize

    1.8MB

    Download

  • memory/4464-10-0x0000000000400000-0x00000000005CEF40-memory.dmp

    Filesize

    1.8MB

    Download

  • memory/4464-9-0x0000000000400000-0x00000000005CEF40-memory.dmp

    Filesize

    1.8MB

    Download

  • memory/4464-1-0x0000000000400000-0x00000000005CEF40-memory.dmp

    Filesize

    1.8MB

    Download

  • memory/4464-350-0x0000000000400000-0x00000000005CEF40-memory.dmp

    Filesize

    1.8MB

    Download

  • memory/4464-353-0x00000000005C4000-0x00000000005CE000-memory.dmp

    Filesize

    40KB

    Download

  • memory/4464-356-0x0000000000400000-0x00000000005CEF40-memory.dmp

    Filesize

    1.8MB

    Download

  • memory/4464-362-0x0000000000400000-0x00000000005CEF40-memory.dmp

    Filesize

    1.8MB

    Download

  • memory/4464-0-0x0000000000400000-0x00000000005CEF40-memory.dmp

    Filesize

    1.8MB

    Download

  • memory/4464-2-0x00000000005C4000-0x00000000005CE000-memory.dmp

    Filesize

    40KB

    Download

  • memory/4464-365-0x0000000000400000-0x00000000005CEF40-memory.dmp

    Filesize

    1.8MB

    Download

  • memory/4464-421-0x0000000000400000-0x00000000005CEF40-memory.dmp

    Filesize

    1.8MB

    Download

  • memory/4464-388-0x0000000000400000-0x00000000005CEF40-memory.dmp

    Filesize

    1.8MB

    Download

  • memory/4464-398-0x0000000000400000-0x00000000005CEF40-memory.dmp

    Filesize

    1.8MB

    Download

  • memory/4464-411-0x0000000000400000-0x00000000005CEF40-memory.dmp

    Filesize

    1.8MB

    Download

  • memory/4464-378-0x0000000000400000-0x00000000005CEF40-memory.dmp

    Filesize

    1.8MB

    Download

  • memory/4464-432-0x0000000000400000-0x00000000005CEF40-memory.dmp

    Filesize

    1.8MB

    Download

  • memory/4464-444-0x0000000000400000-0x00000000005CEF40-memory.dmp

    Filesize

    1.8MB

    Download

  • memory/4464-454-0x0000000000400000-0x00000000005CEF40-memory.dmp

    Filesize

    1.8MB

    Download

  • memory/4464-370-0x0000000000400000-0x00000000005CEF40-memory.dmp

    Filesize

    1.8MB

    Download

  • memory/4464-475-0x0000000000400000-0x00000000005CEF40-memory.dmp

    Filesize

    1.8MB

    Download

  • memory/4464-488-0x0000000000400000-0x00000000005CEF40-memory.dmp

    Filesize

    1.8MB

    Download

  • memory/4464-498-0x0000000000400000-0x00000000005CEF40-memory.dmp

    Filesize

    1.8MB

    Download