df7586816b518bc570a88354c44fbf71db112aea620c50d0328acd2fda1f817b | Triage

Submit
Reports

Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

7

Static

static

3

JaffaCakes...98.exe

windows7-x64

7

JaffaCakes...98.exe

windows10-2004-x64

7

Sharing

General

Target

JaffaCakes118_9821199ae69c92bc5e5d746a971db598
Size

595KB
Sample

250204-znymgatkhj
MD5

9821199ae69c92bc5e5d746a971db598
SHA1

1b3dc8bb0bac9cb2d1674daedcd36f161607775e
SHA256

df7586816b518bc570a88354c44fbf71db112aea620c50d0328acd2fda1f817b
SHA512

56889c59018f5c8d2604b1fa34ea6b3ae41fcb303437c72c31d2736e98b6b00b1d89b536707acfe934b0b1ed465f64001d1ce8fe8b2df5a9d34f99e08c479fae
SSDEEP

3072:bNqOW8BHQKkPc1PjuV6GQ5PcND6Tzl1Do1G/Fev:ZqDaRk4PjuV6t5PcN+fl1DGG/F

Score

7^/10

discovery

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

JaffaCakes118_9821199ae69c92bc5e5d746a971db598.exe

Resource

win7-20241010-en

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

JaffaCakes118_9821199ae69c92bc5e5d746a971db598.exe

Resource

win10v2004-20250129-en

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  JaffaCakes118_9821199ae69c92bc5e5d746a971db598
- Size
  
  595KB
- MD5
  
  9821199ae69c92bc5e5d746a971db598
- SHA1
  
  1b3dc8bb0bac9cb2d1674daedcd36f161607775e
- SHA256
  
  df7586816b518bc570a88354c44fbf71db112aea620c50d0328acd2fda1f817b
- SHA512
  
  56889c59018f5c8d2604b1fa34ea6b3ae41fcb303437c72c31d2736e98b6b00b1d89b536707acfe934b0b1ed465f64001d1ce8fe8b2df5a9d34f99e08c479fae
- SSDEEP
  
  3072:bNqOW8BHQKkPc1PjuV6GQ5PcND6Tzl1Do1G/Fev:ZqDaRk4PjuV6t5PcN+fl1DGG/F
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy