Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    134s
  • max time network
    124s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240802-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
  • submitted
    17/08/2024, 13:31

General

  • Target

    a2b9a48fc4588841456a30eb1b4c6f8e_JaffaCakes118.exe

  • Size

    55KB

  • MD5

    a2b9a48fc4588841456a30eb1b4c6f8e

  • SHA1

    b3bea3e868650be37f91065b12444236f87b0f46

  • SHA256

    03b5f5b0be745c1be2463682342557607d62b21b771ecbab8faf20410165d9cb

  • SHA512

    2a7b9ceb38f98291b4f23e0d572c9e551e3c32c34c2ff9413480f30c86375c27265b202e742a65de548a7a52193cbd68a7c4f535ce2809f9611d8e375eac50ae

  • SSDEEP

    1536:Dr6tNGGtHfcuUEMCDCY2MwdWnwbjtkq0BCkx0S1:63GiHUuZ2Wdl6q

Score
3/10

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

Processes

  • C:\Users\Admin\AppData\Local\Temp\a2b9a48fc4588841456a30eb1b4c6f8e_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\a2b9a48fc4588841456a30eb1b4c6f8e_JaffaCakes118.exe"
    1⤵
    • System Location Discovery: System Language Discovery
    PID:1476

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1476-0-0x0000000010000000-0x0000000010015000-memory.dmp

    Filesize

    84KB