9d256b7f879843ceb9f60c2e1e1f80fead34d193df640189dea485b5cc11778d | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

7

c074e4ed3c...18.exe

windows7-x64

7

c074e4ed3c...18.exe

windows10-2004-x64

7

Sharing

General

Target

c074e4ed3c8c3c1cdd3b12b63bb6f6a2_JaffaCakes118
Size

158KB
Sample

240825-ll8g1axcqf
MD5

c074e4ed3c8c3c1cdd3b12b63bb6f6a2
SHA1

7e6c8d1b89677a0939d6d368d616631a62b877d3
SHA256

9d256b7f879843ceb9f60c2e1e1f80fead34d193df640189dea485b5cc11778d
SHA512

7bddfc809841f8d9de5b8c2e6afd14f3b63cdad181ed2428c82a64cf38bdd7540e265996d469333a272665bd1f439d1da34883e4ef27dbb916c151ae44f4d2ec
SSDEEP

3072:fwABjrG3Vi/cOBLUsmyi4AHhmTdI3wIe0HRDLVT/sOrVzzXk:oGjrUVecOJUsmdmdI3vPRDLp/s0z0

Score

7^/10

discovery upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

c074e4ed3c8c3c1cdd3b12b63bb6f6a2_JaffaCakes118.exe

Resource

win7-20240704-en

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

c074e4ed3c8c3c1cdd3b12b63bb6f6a2_JaffaCakes118.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  c074e4ed3c8c3c1cdd3b12b63bb6f6a2_JaffaCakes118
- Size
  
  158KB
- MD5
  
  c074e4ed3c8c3c1cdd3b12b63bb6f6a2
- SHA1
  
  7e6c8d1b89677a0939d6d368d616631a62b877d3
- SHA256
  
  9d256b7f879843ceb9f60c2e1e1f80fead34d193df640189dea485b5cc11778d
- SHA512
  
  7bddfc809841f8d9de5b8c2e6afd14f3b63cdad181ed2428c82a64cf38bdd7540e265996d469333a272665bd1f439d1da34883e4ef27dbb916c151ae44f4d2ec
- SSDEEP
  
  3072:fwABjrG3Vi/cOBLUsmyi4AHhmTdI3wIe0HRDLVT/sOrVzzXk:oGjrUVecOJUsmdmdI3vPRDLp/s0z0
Score

7^/10

discovery upx
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy