Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

extracted_at_0x0.exe

windows7-x64

10

extracted_at_0x0.exe

windows10-2004-x64

10

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

Lib.Platfo...ve.dll

windows7-x64

1

Lib.Platfo...ve.dll

windows10-2004-x64

1

vmxnet3.html

windows7-x64

3

vmxnet3.html

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_f97e7763f53610fb7915fa5ee7d0fd649749281f6ea3c6774d044c641cc32a86

  • Size

    338KB

  • MD5

    7d3a374530eca69928f7ecb004b261de

  • SHA1

    641e6186958df82256d6b08672145a02386a5530

  • SHA256

    f97e7763f53610fb7915fa5ee7d0fd649749281f6ea3c6774d044c641cc32a86

  • SHA512

    222a12a540aabb80d5e5eb0c116952b6dcb844c3e1d855fcd96fdc0093d329b7d3ddcf987f4f1e594dcabfebe56eb51caac43d0482ee5f8810d7114db8feea24

  • SSDEEP

    6144:NH++174+frkj3qNyMa3cbOr0HZh7NEr67w8UsmRv3StGoj7LK6HsFR04GiGNV4/y:NH++1U+fgXro0OwImRv0fLKbR04G3V4K

Score
3/10

Malware Config

Signatures

  • Unsigned PE 1 IoCs

    Checks for missing Authenticode signature.

Files

  • JaffaCakes118_f97e7763f53610fb7915fa5ee7d0fd649749281f6ea3c6774d044c641cc32a86
    .zip

    Password: infected

  • extracted_at_0x0.exe.bin
    .exe windows:4 windows x86 arch:x86

    e221f4f7d36469d53810a4b5f9fc8966


    Code Sign

    Headers

    Imports

    Sections

  • $PLUGINSDIR/System.dll
    .dll windows:4 windows x86 arch:x86

    fc0224e99e736751432961db63a41b76


    Headers

    Imports

    Exports

    Sections

  • Desamidase.bmp
  • Lib.Platform.Windows.Native.dll
    .dll windows:6 windows x64 arch:x64

    dc6545082ecd0d2498d23b2e46d671a8


    Code Sign

    Headers

    Imports

    Exports

    Sections

  • piezometre/system-reboot-symbolic.svg
  • vmxnet3.sys
    .html