Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    12/09/2024, 18:29

General

  • Target

    dccf4332257626bc7df70c5358d895e3_JaffaCakes118.exe

  • Size

    485KB

  • MD5

    dccf4332257626bc7df70c5358d895e3

  • SHA1

    b2ecd253202325a1f6f137547d1e108c8c550667

  • SHA256

    31d1fe5f970430a4368aa984fd24b9be541d7c0e44f9dcd778f72197ce2843f7

  • SHA512

    84026e83035a79eebb56271305d4153051d98649145d89be2a00460c945c26fe65876aa88df87b4834ed8c395ed34e7e7d4606e9b3666c083c3d1ade3e0eaf67

  • SSDEEP

    12288:vlRVUPrwnahk+2lWjLg8krmYE/BJqmwaZLTG3+X5:v1KrwCCAPw8/BJqj3w

Score
3/10

Malware Config

Signatures

  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

Processes

  • C:\Users\Admin\AppData\Local\Temp\dccf4332257626bc7df70c5358d895e3_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\dccf4332257626bc7df70c5358d895e3_JaffaCakes118.exe"
    1⤵
    • System Location Discovery: System Language Discovery
    PID:3032

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads