6da30cea65053c5ed0977303b4625415db3a6e09402f23a2e9cf1d53765e586e | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

6

Static

static

5

3ee13e00d0...18.exe

windows7-x64

6

3ee13e00d0...18.exe

windows10-2004-x64

6

Sharing

General

Target

3ee13e00d0b623c09b89d19b24abbb9d_JaffaCakes118
Size

842KB
Sample

241013-km5basscjn
MD5

3ee13e00d0b623c09b89d19b24abbb9d
SHA1

a6939a9c70a1a1e2538ad0bc4ea3bcc46034dd13
SHA256

6da30cea65053c5ed0977303b4625415db3a6e09402f23a2e9cf1d53765e586e
SHA512

b0cdba354c6d1dc38e2c44a6620e5ef8cdfabc655427a28e798c122537bdb2a31716e73b877f73f7f02d49db8231308b14ca792348cfe73fddde7f531af2ebcf
SSDEEP

24576:Bmo7tkQ0Ycb4FZ6cQkGklIpop6w9bZsKVjd:Yo7/0YcbjRkGklyNwDv7

Score

6^/10

defense_evasion discovery upx

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

3ee13e00d0b623c09b89d19b24abbb9d_JaffaCakes118.exe

Resource

win7-20240903-en

defense_evasion discovery upx

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

3ee13e00d0b623c09b89d19b24abbb9d_JaffaCakes118.exe

Resource

win10v2004-20241007-en

defense_evasion discovery upx

windows10-2004-x64

7 signatures

150 seconds

Malware Config

Targets

- Target
  
  3ee13e00d0b623c09b89d19b24abbb9d_JaffaCakes118
- Size
  
  842KB
- MD5
  
  3ee13e00d0b623c09b89d19b24abbb9d
- SHA1
  
  a6939a9c70a1a1e2538ad0bc4ea3bcc46034dd13
- SHA256
  
  6da30cea65053c5ed0977303b4625415db3a6e09402f23a2e9cf1d53765e586e
- SHA512
  
  b0cdba354c6d1dc38e2c44a6620e5ef8cdfabc655427a28e798c122537bdb2a31716e73b877f73f7f02d49db8231308b14ca792348cfe73fddde7f531af2ebcf
- SSDEEP
  
  24576:Bmo7tkQ0Ycb4FZ6cQkGklIpop6w9bZsKVjd:Yo7/0YcbjRkGklyNwDv7
Score

6^/10

defense_evasion discovery upx
- Indicator Removal: File Deletion
  Adversaries may delete files left behind by the actions of their intrusion activity.
  defense_evasion
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Indicator Removal

File Deletion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

defense_evasiondiscoveryupx

behavioral2

defense_evasiondiscoveryupx

© 2018-2025

Terms | Privacy