80461ef1cf185b27ee2403170a20a87a6ddbf8481dfe6e939a8582c0a939d8ad | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

8

Static

static

3

17196f1ad4...18.exe

windows7-x64

8

17196f1ad4...18.exe

windows10-2004-x64

8

Sharing

General

Target

17196f1ad48ddeac4dd67dda4ec23a8e_JaffaCakes118
Size

5.1MB
Sample

241005-lbxmraxdqn
MD5

17196f1ad48ddeac4dd67dda4ec23a8e
SHA1

27acf0077404613c5970dd32b8972af7d060616c
SHA256

80461ef1cf185b27ee2403170a20a87a6ddbf8481dfe6e939a8582c0a939d8ad
SHA512

a33daeab068ba8b40468103302370f6fec1fd4db6e2feaa7431e0a8d2ae1f3feaae6c9b685043e5dd42a7a777b65869368e0cbc226e21fbcd50f3189b845dd60
SSDEEP

98304:1jw+1B8W/bHmJ4NwByfAA9OvBuQTINmEKkrAYHRFQz:8gGKNES7QkLlAN

Score

8^/10

discovery evasion

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

17196f1ad48ddeac4dd67dda4ec23a8e_JaffaCakes118.exe

Resource

win7-20240903-en

discovery evasion

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

17196f1ad48ddeac4dd67dda4ec23a8e_JaffaCakes118.exe

Resource

win10v2004-20240802-en

discovery evasion

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  17196f1ad48ddeac4dd67dda4ec23a8e_JaffaCakes118
- Size
  
  5.1MB
- MD5
  
  17196f1ad48ddeac4dd67dda4ec23a8e
- SHA1
  
  27acf0077404613c5970dd32b8972af7d060616c
- SHA256
  
  80461ef1cf185b27ee2403170a20a87a6ddbf8481dfe6e939a8582c0a939d8ad
- SHA512
  
  a33daeab068ba8b40468103302370f6fec1fd4db6e2feaa7431e0a8d2ae1f3feaae6c9b685043e5dd42a7a777b65869368e0cbc226e21fbcd50f3189b845dd60
- SSDEEP
  
  98304:1jw+1B8W/bHmJ4NwByfAA9OvBuQTINmEKkrAYHRFQz:8gGKNES7QkLlAN
Score

8^/10

discovery evasion
- Blocks application from running via registry modification
  Adds application to list of disallowed applications.
  evasion
- Drops file in Drivers directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasion

behavioral2

discoveryevasion

© 2018-2025

Terms | Privacy