Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Analysis

  • max time kernel
    94s
  • max time network
    137s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20241007-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
  • submitted
    16/12/2024, 12:06

General

  • Target

    f8ed30e4a37ce22826a8698eeaaac42a_JaffaCakes118.exe

  • Size

    261KB

  • MD5

    f8ed30e4a37ce22826a8698eeaaac42a

  • SHA1

    dd6b782578e3747e0bbfca5513e2ee76c01cab4b

  • SHA256

    0c35798e10c5d1fd5e9ce2489a413a58c72ece346a1b32c4784b2853eaeff70c

  • SHA512

    41033b32f49012564f666c09c52d4218b5db0e80b1f2fd7239d585915da75a85a109d450ce43d7b9db1ab146d0e1c987a35c9dde744f726df27d200341df2ad6

  • SSDEEP

    6144:IayqTuLw5F88SgCpsS1EbAD7im4vpDVL7RQQZQf6KAe8ihh:yCua88SEjbEwvpZBZQfZhh

Score
3/10

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

Processes

  • C:\Users\Admin\AppData\Local\Temp\f8ed30e4a37ce22826a8698eeaaac42a_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\f8ed30e4a37ce22826a8698eeaaac42a_JaffaCakes118.exe"
    1⤵
    • System Location Discovery: System Language Discovery
    PID:2804

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads