Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    ea783ac96b335efd74756a84f3d64215_JaffaCakes118

  • Size

    476KB

  • Sample

    240409-vgf2magd4y

  • MD5

    ea783ac96b335efd74756a84f3d64215

  • SHA1

    0002d031a384af295716a24ead55cfd900efbb34

  • SHA256

    248ad1e3c0b9078006a48fe793f75362a435addff3386fe02f18d4c4331d08aa

  • SHA512

    6deeeef2bb719b08c008fba14aae3dfc64ea28cdf8b97e88c45360dcd0239c9e1a61144eabb84505ee6be6193f49034c572f5072c3893e95ac15c06f18c91bb6

  • SSDEEP

    12288:KYmIjE7eNdKcWEbr2Ubr4TgyUbZm6qCs8e/G:m7eNAYbr2Ub8T5geL

Score
10/10

Malware Config

Targets

    • Target

      ea783ac96b335efd74756a84f3d64215_JaffaCakes118

    • Size

      476KB

    • MD5

      ea783ac96b335efd74756a84f3d64215

    • SHA1

      0002d031a384af295716a24ead55cfd900efbb34

    • SHA256

      248ad1e3c0b9078006a48fe793f75362a435addff3386fe02f18d4c4331d08aa

    • SHA512

      6deeeef2bb719b08c008fba14aae3dfc64ea28cdf8b97e88c45360dcd0239c9e1a61144eabb84505ee6be6193f49034c572f5072c3893e95ac15c06f18c91bb6

    • SSDEEP

      12288:KYmIjE7eNdKcWEbr2Ubr4TgyUbZm6qCs8e/G:m7eNAYbr2Ub8T5geL

    Score
    10/10
    • Expiro, m0yv

      Expiro aka m0yv is a multi-functional backdoor written in C++.

    • Expiro payload

MITRE ATT&CK Matrix

Tasks