Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

3

13d9d3e8a2...18.exe

windows7-x64

3

13d9d3e8a2...18.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    118s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    04/10/2024, 15:07 UTC

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    13d9d3e8a20c27ab7b4fe3b6f05ba094_JaffaCakes118.exe

  • Size

    252KB

  • MD5

    13d9d3e8a20c27ab7b4fe3b6f05ba094

  • SHA1

    68e8c7ac3c9efd64781f7be2b0630b6e972829b4

  • SHA256

    3345348ad8109cbef2493237c21ad27f453b21c99ddadfc5f0482618083cd4b4

  • SHA512

    3ffb212efac6dd8c7e9e9af10eb2f0e717bf88f2d89e5ad95da297d0d05c2ef1918cf810e1a14c36a76aef95fe6dcae10f34447ae0433a4e0fdb11b96dad785d

  • SSDEEP

    6144:MKSOzBggYF5WhU/VU46BADj2BDHjBYaaC:MyBgg6eKd6iH2BHBYDC

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery

Processes

  • C:\Users\Admin\AppData\Local\Temp\13d9d3e8a20c27ab7b4fe3b6f05ba094_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\13d9d3e8a20c27ab7b4fe3b6f05ba094_JaffaCakes118.exe"
    1⤵
    • System Location Discovery: System Language Discovery
    PID:3040

Network

  • flag-us
    DNS
    www2.crawler.com
    13d9d3e8a20c27ab7b4fe3b6f05ba094_JaffaCakes118.exe
    Remote address:
    8.8.8.8:53
    Request
    www2.crawler.com
    IN A
    Response
    www2.crawler.com
    IN A
    64.135.77.50
  • 64.135.77.50:80
    www2.crawler.com
    13d9d3e8a20c27ab7b4fe3b6f05ba094_JaffaCakes118.exe
    152 B
     3
  • 8.8.8.8:53
    www2.crawler.com
    dns
    13d9d3e8a20c27ab7b4fe3b6f05ba094_JaffaCakes118.exe
    62 B
     78 B
     1
    1

    DNS Request

    www2.crawler.com

    DNS Response

    64.135.77.50

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\setupcfg.ini
    Filesize

    120B

    MD5

    01f8096120de9d2c643de421ef8ed363

    SHA1

    f099b705ba90be9be0cea97a138604a5dae7ae12

    SHA256

    4fba4da7b8c5ad78f40f7c499f09f54950b0c11500eeeb11ff6291e499100716

    SHA512

    3a8a2896dcb217f1c539326e956e05dea6703bf55899ccce01ac19db6169a192bc782a937a4ff0ceff33c1133b47b8cd6b672240f86411e2d18010c2ed3a956c

    Download Submit

  • memory/3040-5-0x0000000000400000-0x0000000000449000-memory.dmp

    Filesize

    292KB

    Download

  • memory/3040-7-0x0000000000400000-0x0000000000449000-memory.dmp

    Filesize

    292KB

    Download

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.