Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Static task
static1
Behavioral task
behavioral1
Sample
afvwHSigHFXCUeB.exe
Resource
win7-20240903-en
General
-
Target
JaffaCakes118_dc4fa64bbbcd740a67ddc7d45d640d63773bad24e4da393345920a71881208ba
-
Size
699KB
-
MD5
97678c9615226973013ad06c03590835
-
SHA1
4df0f887d273847f71d4f71d3d94d0bd2752ea59
-
SHA256
dc4fa64bbbcd740a67ddc7d45d640d63773bad24e4da393345920a71881208ba
-
SHA512
e481da254c8e708781dec8ba247a115932ed8f8acc5efc845314afd0ff76d47344fda24db4972e7e7cc50461cf623acebb057214ac394ee2b9e73296b33ab634
-
SSDEEP
12288:g+ebhG/du2+ELDDsAVDjI9lzSOLlvRprJssS5tR7F4LiHR:gecgmRpds95tR7GiHR
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource unpack002/afvwHSigHFXCUeB.exe
Files
-
JaffaCakes118_dc4fa64bbbcd740a67ddc7d45d640d63773bad24e4da393345920a71881208ba.zip
Password: infected
-
0b47e596f4ff457efffc567ca50bc5d80c630c039f63036bdaa8937cf196ca26.lzh
-
afvwHSigHFXCUeB.exe.exe windows:4 windows x86 arch:x86
f34d5f2d4577ed6d9ceec516c1f5a744
Headers
DLL Characteristics
IMAGE_DLLCHARACTERISTICS_DYNAMIC_BASE
IMAGE_DLLCHARACTERISTICS_NX_COMPAT
IMAGE_DLLCHARACTERISTICS_NO_SEH
IMAGE_DLLCHARACTERISTICS_TERMINAL_SERVER_AWARE
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE
Imports
mscoree
_CorExeMain
Sections
.text Size: 787KB - Virtual size: 787KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
.rsrc Size: 2KB - Virtual size: 1KB
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
.reloc Size: 512B - Virtual size: 12B
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_DISCARDABLE
IMAGE_SCN_MEM_READ