b8a236d6e036e81241d215a79bcd298950a71e801cd6c1d406cb7e2aa682e2ea | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

Static

static

3

ff78e0db6e...18.exe

windows7-x64

ff78e0db6e...18.exe

windows10-2004-x64

Sharing

General

Target

ff78e0db6ea178eaada0190e285b821c_JaffaCakes118
Size

434KB
Sample

240929-278mwsvfmp
MD5

ff78e0db6ea178eaada0190e285b821c
SHA1

a13b21034bedfc011c7c9f5d096fb14729253994
SHA256

b8a236d6e036e81241d215a79bcd298950a71e801cd6c1d406cb7e2aa682e2ea
SHA512

fa0e45b6111b68d93e7c1cd6b83f23d3299966455f66609d421cc11fa28fa20a863fea99f3b600fd8528d8da6e8173be656eaf431ee0fe7c89fd76e1c8f2c5fb
SSDEEP

12288:cWWVmQdOw0tp2cYM0jz1H0n85Eny0Pqtq+b0:u1dncYMGz1H0vhPqtA

Score

10^/10

discovery evasion

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

ff78e0db6ea178eaada0190e285b821c_JaffaCakes118.exe

Resource

win7-20240903-en

discovery evasion

windows7-x64

11 signatures

150 seconds

Behavioral task

behavioral2

Sample

ff78e0db6ea178eaada0190e285b821c_JaffaCakes118.exe

Resource

win10v2004-20240802-en

discovery evasion

windows10-2004-x64

11 signatures

150 seconds

Malware Config

Targets

- Target
  
  ff78e0db6ea178eaada0190e285b821c_JaffaCakes118
- Size
  
  434KB
- MD5
  
  ff78e0db6ea178eaada0190e285b821c
- SHA1
  
  a13b21034bedfc011c7c9f5d096fb14729253994
- SHA256
  
  b8a236d6e036e81241d215a79bcd298950a71e801cd6c1d406cb7e2aa682e2ea
- SHA512
  
  fa0e45b6111b68d93e7c1cd6b83f23d3299966455f66609d421cc11fa28fa20a863fea99f3b600fd8528d8da6e8173be656eaf431ee0fe7c89fd76e1c8f2c5fb
- SSDEEP
  
  12288:cWWVmQdOw0tp2cYM0jz1H0n85Eny0Pqtq+b0:u1dncYMGz1H0vhPqtA
Score

10^/10

discovery evasion
- Modifies visibility of file extensions in Explorer
  evasion
- Modifies visiblity of hidden/system files in Explorer
  evasion
- Drops file in Drivers directory
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Modify Registry

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasion

behavioral2

discoveryevasion

© 2018-2025

Terms | Privacy