c27b685148089b25527274ba9dc663e173b8b0247464e4188287221dbb952211 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

7

4d3c1c61e1...18.exe

windows7-x64

7

4d3c1c61e1...18.exe

windows10-2004-x64

7

Sharing

General

Target

4d3c1c61e176d7adfd7326cf2de033da_JaffaCakes118
Size

95KB
Sample

240716-hqd76ssfpe
MD5

4d3c1c61e176d7adfd7326cf2de033da
SHA1

6aaa20f267f84e9c3ea7d0e91d6a158dadc6c9a9
SHA256

c27b685148089b25527274ba9dc663e173b8b0247464e4188287221dbb952211
SHA512

f2d1fbfc6046b8b4588481f3b201a9281dff74063a2f0c9f6b2b3b360bcdbdb4f09295a34ce62aead3480165ba98cbce9775f1e9bf0844d4b46fd10e47a07e22
SSDEEP

1536:94PICqp49ZEx8YTLn7LgpzmPvw+rNWm8ZVXEJgNjvVRKnyjc9LXCH:OOpC+xnj7+46NzVkyQhe

Score

7^/10

aspackv2

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

4d3c1c61e176d7adfd7326cf2de033da_JaffaCakes118.exe

Resource

win7-20240705-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

4d3c1c61e176d7adfd7326cf2de033da_JaffaCakes118.exe

Resource

win10v2004-20240709-en

windows10-2004-x64

4 signatures

150 seconds

Malware Config

Targets

- Target
  
  4d3c1c61e176d7adfd7326cf2de033da_JaffaCakes118
- Size
  
  95KB
- MD5
  
  4d3c1c61e176d7adfd7326cf2de033da
- SHA1
  
  6aaa20f267f84e9c3ea7d0e91d6a158dadc6c9a9
- SHA256
  
  c27b685148089b25527274ba9dc663e173b8b0247464e4188287221dbb952211
- SHA512
  
  f2d1fbfc6046b8b4588481f3b201a9281dff74063a2f0c9f6b2b3b360bcdbdb4f09295a34ce62aead3480165ba98cbce9775f1e9bf0844d4b46fd10e47a07e22
- SSDEEP
  
  1536:94PICqp49ZEx8YTLn7LgpzmPvw+rNWm8ZVXEJgNjvVRKnyjc9LXCH:OOpC+xnj7+46NzVkyQhe
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy