Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

1

JaffaCakes...a2.iso

windows7-x64

3

JaffaCakes...a2.iso

windows10-2004-x64

3

#CHOO1.js

windows7-x64

10

#CHOO1.js

windows10-2004-x64

10

#CHOO2.js

windows7-x64

8

#CHOO2.js

windows10-2004-x64

8

Analysis

  • max time kernel
    119s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20241010-en
  • resource tags

    arch:x64arch:x86image:win7-20241010-enlocale:en-usos:windows7-x64system
  • submitted
    22/12/2024, 12:36

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    #CHOO2.js

  • Size

    7KB

  • MD5

    4fc18805b5686d320a0ccdab8438ed7e

  • SHA1

    afbe3e8f7448be3ace8f48f37c1524748533ed94

  • SHA256

    7257729274b6ab5c1a605900fa40b2a76f386b3dbb3c0f4ab29e85b780eaef73

  • SHA512

    9ec6470aadce9ddaebd57167658d1a8a22ddb496e452b3a4574d3c8fa8b5d643e49d96b31df64f89fe3847bc4c7be792e21f8de063be07ef3452e936931ded14

  • SSDEEP

    192:oWAKxkz+bogcyyv9bM0MDkigxTfHZBkiADviMXObFKU5LiE:sKxm+OVbM0MQnZZAOIObFKBE

Score
8/10
execution

Malware Config

Signatures

  • Blocklisted process makes network request 2 IoCs
  • Command and Scripting Interpreter: JavaScript 1 TTPs
    execution

Processes

  • C:\Windows\system32\wscript.exe
    wscript.exe C:\Users\Admin\AppData\Local\Temp\#CHOO2.js
    1⤵
    • Blocklisted process makes network request
    PID:2700

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads