Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
140s -
max time network
119s -
platform
windows7_x64 -
resource
win7-20240708-en -
resource tags
arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system -
submitted
15/07/2024, 08:12
Static task
static1
Behavioral task
behavioral1
Sample
48f26c51abdd432b8659f4747e5f6776_JaffaCakes118.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
48f26c51abdd432b8659f4747e5f6776_JaffaCakes118.exe
Resource
win10v2004-20240709-en
General
-
Target
48f26c51abdd432b8659f4747e5f6776_JaffaCakes118.exe
-
Size
74KB
-
MD5
48f26c51abdd432b8659f4747e5f6776
-
SHA1
6c29586daade7215edce919cc156296ee26ef9a4
-
SHA256
9296accc39bd44d398792bd18da4a57495d8d3cefcd7c4d5c3f46acbb269fcb4
-
SHA512
5a844ac8ca078c789bde250abd7a5880f5ef652f9fcd197e6dfd0ccea5dcd6336e437eb88b06cbe2d87063100970d63cd86fba4a8fcfb82328fc7c25d3e952c1
-
SSDEEP
1536:DDhdaUEGaZfWg8+qLF4PAkW89UR45zARJ1cxd/snwvapAgAP4X:D1UJZfY+qLGPL/URm0BcxRsnwvalZ
Malware Config
Signatures
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
pid Process 1908 48f26c51abdd432b8659f4747e5f6776_JaffaCakes118.exe -
Suspicious use of SetWindowsHookEx 2 IoCs
pid Process 1908 48f26c51abdd432b8659f4747e5f6776_JaffaCakes118.exe 1908 48f26c51abdd432b8659f4747e5f6776_JaffaCakes118.exe