8b5be3415040fedbbb321b730fa0f3d1f4f3344b5e4451f967c340ec623ce1bb | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

ebdfbea915...18.exe

windows7-x64

7

ebdfbea915...18.exe

windows10-2004-x64

7

Sharing

General

Target

ebdfbea915df9687e6e745a9dd4e816a_JaffaCakes118
Size

36KB
Sample

240919-wdn4ha1gke
MD5

ebdfbea915df9687e6e745a9dd4e816a
SHA1

8edfbf995b581a6ec241e8b22685592da96b11f7
SHA256

8b5be3415040fedbbb321b730fa0f3d1f4f3344b5e4451f967c340ec623ce1bb
SHA512

a915b8db6a054a26d2454ce954f5dbcab8be78fad3652ba530d290f160974a5734cedb2cac0ec137c89b023ddf1047c14cfc464c4a7987b45a2ec5f70cc6624d
SSDEEP

768:QATJxFQM1+Bw8JrV4UYW50z4C6AXTzM7WyjiTd:QA3cBw8JrydM7W7J

Score

7^/10

discovery

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

ebdfbea915df9687e6e745a9dd4e816a_JaffaCakes118.exe

Resource

win7-20240903-en

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

ebdfbea915df9687e6e745a9dd4e816a_JaffaCakes118.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

5 signatures

150 seconds

Malware Config

Targets

- Target
  
  ebdfbea915df9687e6e745a9dd4e816a_JaffaCakes118
- Size
  
  36KB
- MD5
  
  ebdfbea915df9687e6e745a9dd4e816a
- SHA1
  
  8edfbf995b581a6ec241e8b22685592da96b11f7
- SHA256
  
  8b5be3415040fedbbb321b730fa0f3d1f4f3344b5e4451f967c340ec623ce1bb
- SHA512
  
  a915b8db6a054a26d2454ce954f5dbcab8be78fad3652ba530d290f160974a5734cedb2cac0ec137c89b023ddf1047c14cfc464c4a7987b45a2ec5f70cc6624d
- SSDEEP
  
  768:QATJxFQM1+Bw8JrV4UYW50z4C6AXTzM7WyjiTd:QA3cBw8JrydM7W7J
Score

7^/10

discovery
- Executes dropped EXE
- Loads dropped DLL
- Unexpected DNS network traffic destination
  Network traffic to other servers than the configured DNS servers was detected on the DNS port.
- Suspicious use of SetThreadContext
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy