Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    141s
  • max time network
    123s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240709-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240709-enlocale:en-usos:windows10-2004-x64system
  • submitted
    20/07/2024, 23:14

General

  • Target

    605e55bbbc109ded019c8bda316ae316_JaffaCakes118.exe

  • Size

    2.5MB

  • MD5

    605e55bbbc109ded019c8bda316ae316

  • SHA1

    f226e78e75a2305840f9afab43d75564e61111cf

  • SHA256

    209477657f2c0d6129649095d20e2f16d02e7dc767221f628d397acc63b14218

  • SHA512

    00340ec4c41eaa40b81df228e53913e61afe00677e4664b6d69c5bdd0599b6a91bae6e19ff8fcd991bfa6f6e0ae8a1d7b3c0de83381f9dff7354e33ed938a9f5

  • SSDEEP

    49152:c2EfcebRkLkh4EZpuSY6zr4jVRuGUOQbN+w00R4IpO40pNjkR76pQmCSjD0Jfq:HE0GkLkXfY6sRVs9LyI0lphkYpQmfjQJ

Score
1/10

Malware Config

Signatures

  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\605e55bbbc109ded019c8bda316ae316_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\605e55bbbc109ded019c8bda316ae316_JaffaCakes118.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:4128

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/4128-0-0x00000000028A0000-0x00000000028A1000-memory.dmp

    Filesize

    4KB

  • memory/4128-1-0x0000000000400000-0x00000000009F5000-memory.dmp

    Filesize

    6.0MB

  • memory/4128-3-0x00000000028A0000-0x00000000028A1000-memory.dmp

    Filesize

    4KB