Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

JaffaCakes...d7.exe

windows7-x64

10

JaffaCakes...d7.exe

windows10-2004-x64

10

Analysis

  • max time kernel
    92s
  • max time network
    134s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20241007-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
  • submitted
    22/12/2024, 03:24

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    JaffaCakes118_0e4524268de33c9d5240e14d97124ced391b79e1653962465d3cd2459e9b4ed7.exe

  • Size

    1.6MB

  • MD5

    a6bb4abb4dd44dcbabcd26e84f68aba0

  • SHA1

    232101284825cd65af958c1c8a03304e96cbe2e4

  • SHA256

    0e4524268de33c9d5240e14d97124ced391b79e1653962465d3cd2459e9b4ed7

  • SHA512

    f076eb883f1a96308edfaf415f4703770cbc6e3cbd2e3457a64597219547a1ef2f21ae3630d7376fd75d31773d339f0ee09184e0778b0bcadaf72b9611dd98d3

  • SSDEEP

    49152:EnCbL83y9FdfE0pZ0zCa4wI156uL3pgrCEd4:EniLf9FdfE0pZB156utgS

Score
10/10
xmrigminerupx

Malware Config

Signatures

  • Xmrig family
    xmrig
  • xmrig

    XMRig is a high performance, open source, cross platform CPU/GPU miner.

    minerxmrig
  • XMRig Miner payload 2 IoCs
    miner
  • UPX packed file 1 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx

Processes

  • C:\Users\Admin\AppData\Local\Temp\JaffaCakes118_0e4524268de33c9d5240e14d97124ced391b79e1653962465d3cd2459e9b4ed7.exe
    "C:\Users\Admin\AppData\Local\Temp\JaffaCakes118_0e4524268de33c9d5240e14d97124ced391b79e1653962465d3cd2459e9b4ed7.exe"
    1⤵
      PID:1060

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/1060-0-0x00007FF6EFE80000-0x00007FF6F01D4000-memory.dmp

      Filesize

      3.3MB

      Download

    • memory/1060-1-0x00007FF6EFE80000-0x00007FF6F01D4000-memory.dmp

      Filesize

      3.3MB

      Download