30d057212f3e6a689673461dfa7bb7237924f0cb8731b5b79f290f162736641d | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

b3e97e79bd...18.exe

windows7-x64

6

b3e97e79bd...18.exe

windows10-2004-x64

7

Sharing

General

Target

b3e97e79bd3e280f6a89a9fc9504780e_JaffaCakes118
Size

26KB
Sample

240821-r982bsvckd
MD5

b3e97e79bd3e280f6a89a9fc9504780e
SHA1

927aba9a201b4283655374a8c56fc3f66f228590
SHA256

30d057212f3e6a689673461dfa7bb7237924f0cb8731b5b79f290f162736641d
SHA512

6434c54065801c530aef8d66fb54eaf1a37e5ae17043b2363583250e200b6e115ba5525717c1f4f8fab790bc923a5349375ef772a016e8a65c1586f855afec10
SSDEEP

768:Y8dgohpLndMLpvp3FQGYBwZnMEo6UT3sJCbIBsKRrA+CX6gIj:Ycg+lnmp19ZMmUTzbIBsKR8XY

Score

7^/10

collection discovery

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

b3e97e79bd3e280f6a89a9fc9504780e_JaffaCakes118.exe

Resource

win7-20240704-en

collection discovery

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

b3e97e79bd3e280f6a89a9fc9504780e_JaffaCakes118.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  b3e97e79bd3e280f6a89a9fc9504780e_JaffaCakes118
- Size
  
  26KB
- MD5
  
  b3e97e79bd3e280f6a89a9fc9504780e
- SHA1
  
  927aba9a201b4283655374a8c56fc3f66f228590
- SHA256
  
  30d057212f3e6a689673461dfa7bb7237924f0cb8731b5b79f290f162736641d
- SHA512
  
  6434c54065801c530aef8d66fb54eaf1a37e5ae17043b2363583250e200b6e115ba5525717c1f4f8fab790bc923a5349375ef772a016e8a65c1586f855afec10
- SSDEEP
  
  768:Y8dgohpLndMLpvp3FQGYBwZnMEo6UT3sJCbIBsKRrA+CX6gIj:Ycg+lnmp19ZMmUTzbIBsKR8XY
Score

7^/10

collection discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Accesses Microsoft Outlook profiles
  collection
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Email Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

collectiondiscovery

behavioral2

© 2018-2025

Terms | Privacy