bf561f78a7885de122bfff3c1bd198dcd09090a94242defbdc01c43f53be1a99 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

7

dee3d19df2...18.exe

windows7-x64

7

dee3d19df2...18.exe

windows10-2004-x64

7

Sharing

General

Target

dee3d19df2a1eea1ed817f29f63a52df_JaffaCakes118
Size

2.9MB
Sample

240913-zr5vysygpc
MD5

dee3d19df2a1eea1ed817f29f63a52df
SHA1

3a3c8abf7c12774188fe7bd7a0fdcf7e84ea888a
SHA256

bf561f78a7885de122bfff3c1bd198dcd09090a94242defbdc01c43f53be1a99
SHA512

f7d69832cabcdd6d0084b47f6cfbebe7ba728463bf316bf38ef6b85c5e86724a030a5cd6906f2e11e0131f45c23a9a8f168301bf31f01f43d4bbb8a73f29d9e0
SSDEEP

49152:BRNmXosekAR/IjRUyr1qo6m1LrSrb5JC1w3dHHLUbbnQRBSUcU5HEGT4M:LNsoPkAR/AUyrx6oLo5VdHrUbbnWBSGl

Score

7^/10

discovery upx vmprotect

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

dee3d19df2a1eea1ed817f29f63a52df_JaffaCakes118.exe

Resource

win7-20240903-en

discovery upx vmprotect

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

dee3d19df2a1eea1ed817f29f63a52df_JaffaCakes118.exe

Resource

win10v2004-20240802-en

discovery upx vmprotect

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  dee3d19df2a1eea1ed817f29f63a52df_JaffaCakes118
- Size
  
  2.9MB
- MD5
  
  dee3d19df2a1eea1ed817f29f63a52df
- SHA1
  
  3a3c8abf7c12774188fe7bd7a0fdcf7e84ea888a
- SHA256
  
  bf561f78a7885de122bfff3c1bd198dcd09090a94242defbdc01c43f53be1a99
- SHA512
  
  f7d69832cabcdd6d0084b47f6cfbebe7ba728463bf316bf38ef6b85c5e86724a030a5cd6906f2e11e0131f45c23a9a8f168301bf31f01f43d4bbb8a73f29d9e0
- SSDEEP
  
  49152:BRNmXosekAR/IjRUyr1qo6m1LrSrb5JC1w3dHHLUbbnQRBSUcU5HEGT4M:LNsoPkAR/AUyrx6oLo5VdHrUbbnWBSGl
Score

7^/10

discovery upx vmprotect
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- VMProtect packed file
  Detects executables packed with VMProtect commercial packer.
  vmprotect
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryupxvmprotect

behavioral2

discoveryupxvmprotect

© 2018-2025

Terms | Privacy