ed1e35c64ee553966a93724eb74564cc6aba4d55465306238aeb37a1df04f759 | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

07bed66db8...18.exe

windows7-x64

7

07bed66db8...18.exe

windows10-2004-x64

7

Sharing

General

Target

07bed66db8b697dbcea3c9dd53ec367f_JaffaCakes118
Size

3.4MB
Sample

241001-2spapsthrp
MD5

07bed66db8b697dbcea3c9dd53ec367f
SHA1

b52a5b38b7d08298c4ccfaf329fb0ea2baff1d7f
SHA256

ed1e35c64ee553966a93724eb74564cc6aba4d55465306238aeb37a1df04f759
SHA512

5113990cab4229057ee9685519d36af007a6a0541fc33146d38a334f15cf5f494fbf33d06b00f4e61342d86472de4532912e67ded5bcc350888fe772400114f0
SSDEEP

49152:yMh9URWTZaqdwk0c05HGiLh5Z+TZaqdwk0c05HGiOieaq:N3URWYqdwkLcHH1T+YqdwkLcHH23

Score

7^/10

discovery upx

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

07bed66db8b697dbcea3c9dd53ec367f_JaffaCakes118.exe

Resource

win7-20240903-en

windows7-x64

9 signatures

150 seconds

Behavioral task

behavioral2

Sample

07bed66db8b697dbcea3c9dd53ec367f_JaffaCakes118.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

10 signatures

150 seconds

Malware Config

Targets

- Target
  
  07bed66db8b697dbcea3c9dd53ec367f_JaffaCakes118
- Size
  
  3.4MB
- MD5
  
  07bed66db8b697dbcea3c9dd53ec367f
- SHA1
  
  b52a5b38b7d08298c4ccfaf329fb0ea2baff1d7f
- SHA256
  
  ed1e35c64ee553966a93724eb74564cc6aba4d55465306238aeb37a1df04f759
- SHA512
  
  5113990cab4229057ee9685519d36af007a6a0541fc33146d38a334f15cf5f494fbf33d06b00f4e61342d86472de4532912e67ded5bcc350888fe772400114f0
- SSDEEP
  
  49152:yMh9URWTZaqdwk0c05HGiLh5Z+TZaqdwk0c05HGiOieaq:N3URWYqdwkLcHH1T+YqdwkLcHH23
Score

7^/10

discovery upx
- ACProtect 1.3x - 1.4x DLL software
  Detects file using ACProtect software.
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy