Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Analysis
-
max time kernel
118s -
max time network
119s -
platform
windows7_x64 -
resource
win7-20240903-en -
resource tags
arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system -
submitted
12/10/2024, 05:52
Static task
static1
Behavioral task
behavioral1
Sample
38b44bd723d047e43d914b1094fd8253_JaffaCakes118.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
38b44bd723d047e43d914b1094fd8253_JaffaCakes118.exe
Resource
win10v2004-20241007-en
General
-
Target
38b44bd723d047e43d914b1094fd8253_JaffaCakes118.exe
-
Size
24KB
-
MD5
38b44bd723d047e43d914b1094fd8253
-
SHA1
e1a7b0e0333b159704436a0bc028eb2adaf8909f
-
SHA256
6a8868e316597493b787bbf15ba5487cce11dc113e03ce287beaa3f972c4a62d
-
SHA512
a5d6ef3140bc609ded731ffe92e7624f49afb088f2abb34d70232e72b63f8f3dcbaba660fd90e01516c60796ee2d5792c26702ab2faf0a52b1bf666f82bd31fe
-
SSDEEP
384:S9Hy8DLgLjytPJhBa6WzNjFED94QVX9lNcXn3cuA:sS8DLsja/B+zNky8X9lNcXn3c9
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
description ioc Process Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language 38b44bd723d047e43d914b1094fd8253_JaffaCakes118.exe -
Suspicious use of SetWindowsHookEx 1 IoCs
pid Process 1684 38b44bd723d047e43d914b1094fd8253_JaffaCakes118.exe