Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
117s -
max time network
122s -
platform
windows7_x64 -
resource
win7-20240704-en -
resource tags
arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system -
submitted
19/07/2024, 13:18
Static task
static1
Behavioral task
behavioral1
Sample
5c1a0bedf7ce89de12654fc2b36467fc_JaffaCakes118.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
5c1a0bedf7ce89de12654fc2b36467fc_JaffaCakes118.exe
Resource
win10v2004-20240709-en
General
-
Target
5c1a0bedf7ce89de12654fc2b36467fc_JaffaCakes118.exe
-
Size
631KB
-
MD5
5c1a0bedf7ce89de12654fc2b36467fc
-
SHA1
dc18b79f797778f304c843c113bc96ad23c55225
-
SHA256
fb39a2aaf9f7d7715dbd2dc5bd5792bf5a9c959649ebb2c263c271cd80edfb4e
-
SHA512
1b173917cf03ea264c30866f11f177b18603ae1b3146bd1e379841e160bbb4b077d93b0483b4177c9c67866c6624d8e4483266c599af74e2aecaec435c52dd06
-
SSDEEP
12288:gNoFmw6FvnRuzg/axX7JY+eSUSuuFi4A547+8pVpDckHxYfptU:gNlw8vnRuzg/axLJY+cSJFi4ACy8pVpj
Malware Config
Signatures
-
Suspicious behavior: EnumeratesProcesses 1 IoCs
pid Process 2072 5c1a0bedf7ce89de12654fc2b36467fc_JaffaCakes118.exe -
Suspicious use of SetWindowsHookEx 2 IoCs
pid Process 2072 5c1a0bedf7ce89de12654fc2b36467fc_JaffaCakes118.exe 2072 5c1a0bedf7ce89de12654fc2b36467fc_JaffaCakes118.exe