Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
119s -
max time network
120s -
platform
windows7_x64 -
resource
win7-20240705-en -
resource tags
arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system -
submitted
29/08/2024, 10:31
Static task
static1
Behavioral task
behavioral1
Sample
c8a5ce1e23a1aff3f07c944369976db4_JaffaCakes118.jpg
Resource
win7-20240705-en
Behavioral task
behavioral2
Sample
c8a5ce1e23a1aff3f07c944369976db4_JaffaCakes118.jpg
Resource
win10v2004-20240802-en
General
-
Target
c8a5ce1e23a1aff3f07c944369976db4_JaffaCakes118.jpg
-
Size
40KB
-
MD5
c8a5ce1e23a1aff3f07c944369976db4
-
SHA1
3eed1597dc92c3db25587324ade133e53de3c618
-
SHA256
46c4747292587fee34a3cd3fd455ef9afe7e0c181aeb39b937dfac9ba7327bc6
-
SHA512
f0e988748b1445c46d2a5b17822ea56fa75859b4bf7e619fea15520be795aefa8d24a46017e89a005a7bbcf959ec928181b9da4e7066ec571a9102de89038919
-
SSDEEP
768:LQDsRKmr88Y4GCRTqDFZKYei/H2O+tyrcU0Jd9oaecQSNHZU8sOy8+34cMh:EDfmFfGCRbYeif2O+Y4Uy7oa/bNHu8s2
Malware Config
Signatures
-
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).
-
Suspicious use of FindShellTrayWindow 1 IoCs
pid Process 2996 rundll32.exe