19e60fcde1b38e7fd6274e33a8defc1658677800d4a85a2c788decc600a36e66 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

5

Static

static

3

631c9d33ff...18.exe

windows7-x64

5

631c9d33ff...18.exe

windows10-2004-x64

5

Sharing

General

Target

631c9d33ff3a8d714864fd18e1dbf725_JaffaCakes118
Size

2.7MB
Sample

240722-nylvwawcja
MD5

631c9d33ff3a8d714864fd18e1dbf725
SHA1

d56dbf573cb6082eea1f7b4469e8a5f2be6c75be
SHA256

19e60fcde1b38e7fd6274e33a8defc1658677800d4a85a2c788decc600a36e66
SHA512

86be94c10eecf2c76b5b92dec3bd8ed188c4be0a8b2b3078131ee037185ecb58a37aa99c3df2767800c4c1272f9dc8440613dccae5e5d9e21331a1051e8f9ee3
SSDEEP

49152:RAbx0lVw1ug+yPmu1YNTxNMUWHNIFS3v+4X3PMkMNI/JhM:RAbxL1ug+yuu1Yp7MUWHNHqkwI/A

Score

5^/10

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

631c9d33ff3a8d714864fd18e1dbf725_JaffaCakes118.exe

Resource

win7-20240708-en

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

631c9d33ff3a8d714864fd18e1dbf725_JaffaCakes118.exe

Resource

win10v2004-20240709-en

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  631c9d33ff3a8d714864fd18e1dbf725_JaffaCakes118
- Size
  
  2.7MB
- MD5
  
  631c9d33ff3a8d714864fd18e1dbf725
- SHA1
  
  d56dbf573cb6082eea1f7b4469e8a5f2be6c75be
- SHA256
  
  19e60fcde1b38e7fd6274e33a8defc1658677800d4a85a2c788decc600a36e66
- SHA512
  
  86be94c10eecf2c76b5b92dec3bd8ed188c4be0a8b2b3078131ee037185ecb58a37aa99c3df2767800c4c1272f9dc8440613dccae5e5d9e21331a1051e8f9ee3
- SSDEEP
  
  49152:RAbx0lVw1ug+yPmu1YNTxNMUWHNIFS3v+4X3PMkMNI/JhM:RAbxL1ug+yuu1Yp7MUWHNHqkwI/A
Score

5^/10
- Drops file in System32 directory
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy