Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
117s -
max time network
118s -
platform
windows7_x64 -
resource
win7-20240708-en -
resource tags
-
submitted
17/08/2024, 19:58
General
-
Target
a3ed14f924552f0ef1626fe5edce2345_JaffaCakes118.pdf
-
Size
4KB
-
MD5
a3ed14f924552f0ef1626fe5edce2345
-
SHA1
55c6e4e11d53a587524b6695c7622a44552b6574
-
SHA256
9a4b98b277a067f972c4b41db3f912983b417401852ea4ab62b7949f5ff7b7cb
-
SHA512
89592e1120b087d0e21fb1ae6d0e52e61db0d08adb37c9d7c38ec807fd257b017e11e4d78a1aa8b32c76ed84cf7ad738ffe56ec0cf14eb52de1e77d78e372f56
-
SSDEEP
96:40G1oBwyGL5IyW/6HbVgHongG7oiDAvQwfqTDgPRiGkUaJ/pSp:40G2myGL+yW/6HNnh0i8/AgPXkUanSp
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
-
Suspicious use of SetWindowsHookEx 4 IoCs
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\a3ed14f924552f0ef1626fe5edce2345_JaffaCakes118.pdf"1⤵
- System Location Discovery: System Language Discovery
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD5659bd01c697c231984bd962edfc79f8b
SHA183ccf967903e5ac314b98169209f525aa3480608
SHA25611d94223422a72b26b3ddf5a7c51e30b7ba84498d5b80ff06150df41347d8239
SHA5127402f4b7b8c286d034648a6b9ae0bf3a6d194e575ebae7e3848f9dd2e2f12cf3677e5d647006f0dbbe7b6ccac8d3a002a9555efba51daa278d1ed94f7f6f8f8c