Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
121s -
max time network
122s -
platform
windows7_x64 -
resource
win7-20240708-en -
resource tags
-
submitted
19/08/2024, 18:28
General
-
Target
ac189b16f923511227423e54497472f6_JaffaCakes118.pdf
-
Size
3KB
-
MD5
ac189b16f923511227423e54497472f6
-
SHA1
7830e515b8f6413188bccb51d0d7942ce6b71e8c
-
SHA256
4594edc056af8453614266eec148352fcb09e12329a269d30f39808fa78615f7
-
SHA512
69905d971d2132ac04eebcdf584a08b8d3fb5370365e18294ee32a6cb85352c145184a7ffa40cb9d06bd44ddd37f51cc3de4db1479d5a9ae221d34a4a5abbebe
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
-
Suspicious use of SetWindowsHookEx 3 IoCs
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\ac189b16f923511227423e54497472f6_JaffaCakes118.pdf"1⤵
- System Location Discovery: System Language Discovery
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD58afc1062bf867e8dbf2827f5692913f0
SHA1290729d71b6939dbc44f63a736500a5ef046ec95
SHA256bcf1e1e5bb8c91c476c6f9f7c7ae6e260a7e3081df99c05250573847cc7a9ede
SHA5122a447d5fcb6905f8980a6586deb9854755f57cff6a8bba7cf700aca91a165005ea2921f614c8a0c59562fc68f8770fc00cd5d0efe98eb0171efeddb5f259c088