Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    0b93ed3db386dc4c80abd7848470eccc_JaffaCakes118

  • Size

    375KB

  • Sample

    240501-mnf17sfb56

  • MD5

    0b93ed3db386dc4c80abd7848470eccc

  • SHA1

    bcd9b96ea3b7e56f23e9a2796d4dd9f9b3df072f

  • SHA256

    c8b665a23514bc5142d09154b5e25b670ec1b1042b9c19d7a85b1c7f6d9a3aa2

  • SHA512

    bcd8eec141ed3cfb1d3b89edf535ee7627f920dcecd2ef62fa07e739c0ad0e0baba797825c7550cfd792a969c3066ed19fcfce8840d8a52cd2e8a73c0604d3be

  • SSDEEP

    3072:8hOm2sI93UufdC67cimD5t251UrRE9TTFwCFz7:8cm7ImGddXmNt251UriZFwCFz7

Malware Config

Targets

    • Target

      0b93ed3db386dc4c80abd7848470eccc_JaffaCakes118

    • Size

      375KB

    • MD5

      0b93ed3db386dc4c80abd7848470eccc

    • SHA1

      bcd9b96ea3b7e56f23e9a2796d4dd9f9b3df072f

    • SHA256

      c8b665a23514bc5142d09154b5e25b670ec1b1042b9c19d7a85b1c7f6d9a3aa2

    • SHA512

      bcd8eec141ed3cfb1d3b89edf535ee7627f920dcecd2ef62fa07e739c0ad0e0baba797825c7550cfd792a969c3066ed19fcfce8840d8a52cd2e8a73c0604d3be

    • SSDEEP

      3072:8hOm2sI93UufdC67cimD5t251UrRE9TTFwCFz7:8cm7ImGddXmNt251UriZFwCFz7

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks