Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

4bd3217d91...18.exe

windows7-x64

3

4bd3217d91...18.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    94s
  • max time network
    143s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240709-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240709-enlocale:en-usos:windows10-2004-x64system
  • submitted
    15/07/2024, 23:13

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    4bd3217d91a12d3be5349bd885405db9_JaffaCakes118.exe

  • Size

    188KB

  • MD5

    4bd3217d91a12d3be5349bd885405db9

  • SHA1

    9c5c23f044c9f393f4f17e3fcbf5863e0f6c2801

  • SHA256

    8718c5633bead4dc385fecb6d00b37adb02297425a86dd06525e7dd3755721f2

  • SHA512

    c0a03680e43193618651029f258d16c8946302dc6a973c44f2744f1780611c05545c61b6943152cafe7818c02f9d9c87268260c38f925c41c04c8e9937031a95

  • SSDEEP

    3072:524WFT68R+PnPbJvyO55dtuJ8sCTp1o2b3iKmpWNBXJKEAH1IKr2knADevZCPTrC:bWu8RaPbgOrQApm2cWNBXqVIa2k8evZL

Score
3/10

Malware Config

Signatures

  • Program crash 1 IoCs
  • Suspicious behavior: EnumeratesProcesses 4 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\4bd3217d91a12d3be5349bd885405db9_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\4bd3217d91a12d3be5349bd885405db9_JaffaCakes118.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    PID:3228
    • C:\Windows\SysWOW64\WerFault.exe
      C:\Windows\SysWOW64\WerFault.exe -u -p 3228 -s 224
      2⤵
      • Program crash
      PID:2552
  • C:\Windows\SysWOW64\WerFault.exe
    C:\Windows\SysWOW64\WerFault.exe -pss -s 404 -p 3228 -ip 3228
    1⤵
      PID:3464

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/3228-0-0x0000000000400000-0x0000000000431000-memory.dmp

      Filesize

      196KB

      Download

    • memory/3228-1-0x0000000000400000-0x0000000000431000-memory.dmp

      Filesize

      196KB

      Download