2e06c6e316954daa0e3544c3d12ab5bca326c964d8a19f1eb27789c496460f1a | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

70a4e9d7e2...18.exe

windows7-x64

8

70a4e9d7e2...18.exe

windows10-2004-x64

3

Sharing

General

Target

70a4e9d7e247e70411c4d9d11d8c5f0f_JaffaCakes118
Size

348KB
Sample

240725-wjpxzsycre
MD5

70a4e9d7e247e70411c4d9d11d8c5f0f
SHA1

4f33e8a443992b673605eab8db56e3af59348352
SHA256

2e06c6e316954daa0e3544c3d12ab5bca326c964d8a19f1eb27789c496460f1a
SHA512

b7ab40dd4f5620132f48fcd1620608795316d450a930890472cfcb3a8c89cc4e6d366628d59ec763dff04c3f72b9caf624944a468283296f8ee29c5fd5037e31
SSDEEP

6144:fak6HD2ChxKYeRXxNxVJ74QUnERk7jW0g/nuVo1wYylItZ8XmGJweB2PlAo:faj2IKYeRBzVJsRsi60Ro1wYMbwOo

Score

8^/10

discovery upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

70a4e9d7e247e70411c4d9d11d8c5f0f_JaffaCakes118.exe

Resource

win7-20240704-en

windows7-x64

13 signatures

150 seconds

Behavioral task

behavioral2

Sample

70a4e9d7e247e70411c4d9d11d8c5f0f_JaffaCakes118.exe

Resource

win10v2004-20240709-en

windows10-2004-x64

2 signatures

150 seconds

Malware Config

Targets

- Target
  
  70a4e9d7e247e70411c4d9d11d8c5f0f_JaffaCakes118
- Size
  
  348KB
- MD5
  
  70a4e9d7e247e70411c4d9d11d8c5f0f
- SHA1
  
  4f33e8a443992b673605eab8db56e3af59348352
- SHA256
  
  2e06c6e316954daa0e3544c3d12ab5bca326c964d8a19f1eb27789c496460f1a
- SHA512
  
  b7ab40dd4f5620132f48fcd1620608795316d450a930890472cfcb3a8c89cc4e6d366628d59ec763dff04c3f72b9caf624944a468283296f8ee29c5fd5037e31
- SSDEEP
  
  6144:fak6HD2ChxKYeRXxNxVJ74QUnERk7jW0g/nuVo1wYylItZ8XmGJweB2PlAo:faj2IKYeRBzVJsRsi60Ro1wYMbwOo
Score

8^/10

discovery upx
- Manipulates Digital Signatures
  Attackers can apply techniques such as changing the registry keys of authenticode & Cryptography to obtain their binary as valid.
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

SIP and Trust Provider Hijacking

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy