Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
117s -
max time network
117s -
platform
windows7_x64 -
resource
win7-20240903-en -
resource tags
-
submitted
02/10/2024, 00:42
General
-
Target
08198ba3e454be41fed58be4befd822c_JaffaCakes118.pdf
-
Size
78KB
-
MD5
08198ba3e454be41fed58be4befd822c
-
SHA1
49e6f582ba113bf400c37ae03bd129651f3f7e44
-
SHA256
c94f76e24c3d192b7dd2b4d596583b50b66c8515fd7e588474c12e0cde0d41ff
-
SHA512
3a8c5553af83c461f0c3a63a97171037bbf063e806299c2b1d1662479f29ffce88e5b0ec07ea8f8aa5f212134eeb2f63e09bae7c156a3aa5bba6e08e84548cf2
-
SSDEEP
1536:tjcyzhhI8XJVeHixIojW8f0IbegJfarCe0dWdvN/CJnriEIzOWepOyWWQsZDkO9a:ppPeHiATgyGejXLHz/ySsOO9Wr
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
-
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
-
Suspicious use of SetWindowsHookEx 3 IoCs
Processes
-
C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe"C:\Program Files (x86)\Adobe\Reader 9.0\Reader\AcroRd32.exe" "C:\Users\Admin\AppData\Local\Temp\08198ba3e454be41fed58be4befd822c_JaffaCakes118.pdf"1⤵
- System Location Discovery: System Language Discovery
- Suspicious behavior: GetForegroundWindowSpam
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
3KB
MD57cd000b0683d63c971940f380a327ca4
SHA138f020e73e5354c0b6bd914a99396c134b269918
SHA2560207bee0331b1ef60fdbe734edc0ff22cf8453e34a428214233a8f2fb2948892
SHA5128140453c0f59cf563f977126a7f4b053ca6293c738115aa427bd5ae5c4b5d7f21538f50432fa5727c7744995ce12bb8f7eef3ce2aab385acee5e48c156d1c2a2