Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

c7ea31e5e4...18.exe

windows7-x64

3

c7ea31e5e4...18.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    13s
  • max time network
    19s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    29/08/2024, 00:23 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    c7ea31e5e46e351d579f153601ab8002_JaffaCakes118.exe

  • Size

    1.4MB

  • MD5

    c7ea31e5e46e351d579f153601ab8002

  • SHA1

    35b6c40dac88ec5c716fc53455e4015d9bfc4a9c

  • SHA256

    038de6a14054f1776bb4d689e8a1e822a4c56578968535394e67a9aebc118ecc

  • SHA512

    a8c68b2162490dbc45ee1327c376b55bfbe7a21fa86ed7f6a59ecbd2ab1cd8be2117bcaa42a98a38f3ebd471bb1684725d8e8669311dae892f7cc656d3b8db99

  • SSDEEP

    24576:TWwmsE278XXtNN6rPwkEJ96Z73CMS14U5jb4WFFdee:CMdWN2yCZ7RzeFdee

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\c7ea31e5e46e351d579f153601ab8002_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\c7ea31e5e46e351d579f153601ab8002_JaffaCakes118.exe"
    1⤵
    • System Location Discovery: System Language Discovery
    • Suspicious use of SetWindowsHookEx
    PID:2268

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.