Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
Static task
static1
Behavioral task
behavioral1
Sample
JaffaCakes118_15377bdefbce244cd96b1e0b70547fa0.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
JaffaCakes118_15377bdefbce244cd96b1e0b70547fa0.exe
Resource
win10v2004-20241007-en
General
-
Target
JaffaCakes118_15377bdefbce244cd96b1e0b70547fa0
-
Size
467KB
-
MD5
15377bdefbce244cd96b1e0b70547fa0
-
SHA1
12001dab1a489d3ffbef87fdadcb733ddbb49644
-
SHA256
2ed9e7570d9ab3bae82bf3c2ba05d64003c46c48ea2ee01514ff3fc6a9632acc
-
SHA512
95545cfdb40d9ba1ee73a7198161504e90f3f47323b62445958b0421e07e1f7b7a348624030848d52391de0b6b087e8a0f7edd31ba7dc8d2ec9c6ba9c646f8ed
-
SSDEEP
12288:t/neVyUK8VHf2sAJgC1GFq2CjWsltfsv/W1ioJ1cUVn8:tDOHfyJgCn2CqkfooJ1rh8
Malware Config
Signatures
-
Unsigned PE 1 IoCs
Checks for missing Authenticode signature.
resource JaffaCakes118_15377bdefbce244cd96b1e0b70547fa0
Files
-
JaffaCakes118_15377bdefbce244cd96b1e0b70547fa0.exe windows:4 windows x86 arch:x86
6a80d4073304c34d4f6101bb0999883e
Headers
File Characteristics
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_BYTES_REVERSED_LO
IMAGE_FILE_32BIT_MACHINE
IMAGE_FILE_BYTES_REVERSED_HI
Imports
user32
MessageBoxA
MessageBeep
Sections
CODE Size: 457KB - Virtual size: 728KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE
DATA Size: 9KB - Virtual size: 8KB
IMAGE_SCN_CNT_CODE
IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE