Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
119s -
max time network
120s -
platform
windows7_x64 -
resource
win7-20240708-en -
resource tags
-
submitted
14/09/2024, 04:52
General
-
Target
df85afb077c9742fe2f486747b0d2536_JaffaCakes118.pdf
-
Size
34KB
-
MD5
df85afb077c9742fe2f486747b0d2536
-
SHA1
6a472d511c2bb650afa1d762ae2c5393e393d287
-
SHA256
5b9374517be43aa03c40893b14cc0f9a1907d38096705ab897396bd47b717fbc
-
SHA512
a86f28aa8c8edc9e205fdfe72a7762b924e71a569fd13339e1c503b0a8801e274ba6989a2b6732d4aec9e8882fb7afae2425e0f73570dbde337b3d43e4a335f4
-
SSDEEP
768:67DSBG9vuCs4G3u4KyhTldskjmWXMk78qYjxrI+t9x:WDSquwGZKyR/1jmWXMkIqYFI+tr
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
-
Suspicious use of SetWindowsHookEx 4 IoCs
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\df85afb077c9742fe2f486747b0d2536_JaffaCakes118.pdf"1⤵
- System Location Discovery: System Language Discovery
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD5f1bdb78a841fd94de6e2f8459f3bf47f
SHA1a97f9f44ac0cbbb1f2b5ad6d700772278688aebf
SHA256175f548512726cfc0584822a9343be7a665e9f0a454ac4d89250628747ed644e
SHA512680b365897d1e6e2b87e4812f966f6ead53d00619c6a751488c5ef9505ce6177a868f29d45995cdcf5f684948e515e41d831181b6865f8c715fff6f81d114297