Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
149s -
max time network
151s -
platform
windows10-2004_x64 -
resource
win10v2004-20240709-en -
resource tags
arch:x64arch:x86image:win10v2004-20240709-enlocale:en-usos:windows10-2004-x64system -
submitted
23/07/2024, 12:21
Static task
static1
Behavioral task
behavioral1
Sample
679234ccb006383a6a7df20b674a47e8_JaffaCakes118.exe
Resource
win7-20240704-en
Behavioral task
behavioral2
Sample
679234ccb006383a6a7df20b674a47e8_JaffaCakes118.exe
Resource
win10v2004-20240709-en
General
-
Target
679234ccb006383a6a7df20b674a47e8_JaffaCakes118.exe
-
Size
2.5MB
-
MD5
679234ccb006383a6a7df20b674a47e8
-
SHA1
e06d18fc8030d877cedea8905716c7c63c94acfe
-
SHA256
65d3d9758767ee80af3439f529e4c18f72054996807353364c77d8773f83e851
-
SHA512
c728fa8704af2b34d67c19904b8fbfb820aaf5c2e25d480a59951c2112af310512fd074363988582be9676606b278c1e7a0715bedb7a0da14043cfaa62c1d85b
-
SSDEEP
49152:S0qUQBTNMAa9q4fzvIT/XHmFE77U6iValcd:SkQtN9alfo3kEc6Ed
Malware Config
Signatures
-
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).
-
Suspicious use of SetWindowsHookEx 2 IoCs
pid Process 4292 679234ccb006383a6a7df20b674a47e8_JaffaCakes118.exe 4292 679234ccb006383a6a7df20b674a47e8_JaffaCakes118.exe