76c17ca0e174dac459a74259f5b76ee5921d38f0d66459bf4fbb6ac09d1aa723 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

7

a38348be26...18.exe

windows7-x64

7

a38348be26...18.exe

windows10-2004-x64

7

Sharing

General

Target

a38348be26a8c1bb303122858f26152d_JaffaCakes118
Size

28KB
Sample

240817-wbegaayale
MD5

a38348be26a8c1bb303122858f26152d
SHA1

98813bae75f1fc2310e2ae4afd4081977d97449a
SHA256

76c17ca0e174dac459a74259f5b76ee5921d38f0d66459bf4fbb6ac09d1aa723
SHA512

eb5ce6fa186241291960b907e2600bb29ede22d007fe0d36e801e1b7ec9f6420f9d40e16d3174f2c97a24ccb9af5e9cd063aed8560194600be4ebb4ec23cfa95
SSDEEP

384:1vxBbK26lj5Id8SpHx9jLhsznnVxA1WmP5w7GGCJlqqwMyNGO:Dv8IRRdsxq1DjJcqfO

Score

7^/10

discovery persistence upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

a38348be26a8c1bb303122858f26152d_JaffaCakes118.exe

Resource

win7-20240704-en

discovery persistence upx

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

a38348be26a8c1bb303122858f26152d_JaffaCakes118.exe

Resource

win10v2004-20240802-en

discovery persistence upx

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  a38348be26a8c1bb303122858f26152d_JaffaCakes118
- Size
  
  28KB
- MD5
  
  a38348be26a8c1bb303122858f26152d
- SHA1
  
  98813bae75f1fc2310e2ae4afd4081977d97449a
- SHA256
  
  76c17ca0e174dac459a74259f5b76ee5921d38f0d66459bf4fbb6ac09d1aa723
- SHA512
  
  eb5ce6fa186241291960b907e2600bb29ede22d007fe0d36e801e1b7ec9f6420f9d40e16d3174f2c97a24ccb9af5e9cd063aed8560194600be4ebb4ec23cfa95
- SSDEEP
  
  384:1vxBbK26lj5Id8SpHx9jLhsznnVxA1WmP5w7GGCJlqqwMyNGO:Dv8IRRdsxq1DjJcqfO
Score

7^/10

discovery persistence upx
- Executes dropped EXE
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Adds Run key to start application
  persistence
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Privilege Escalation

Boot or Logon Autostart Execution

Registry Run Keys / Startup Folder

Defense Evasion

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoverypersistenceupx

behavioral2

discoverypersistenceupx

© 2018-2025

Terms | Privacy

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.