Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
3b3224ae359572a429e6d1dce50c7148_JaffaCakes118
-
Size
1.5MB
-
Sample
240512-vnpmcaae58
-
MD5
3b3224ae359572a429e6d1dce50c7148
-
SHA1
6e3b674eb7dd41be16759de454c8fb32bece5388
-
SHA256
d150b435b9a5bf4a9bf9159862ed3ebdb857405c17a4e8ec580361f4d45f17ad
-
SHA512
54a5328f0e8387d549fd53ec469b7a7f5cb2d4ab3c674b69af5d706ccc3e6cd7bad6413578afa7555a386c470d0d52af6af1a0ab6ea4f893de6b86502f24c2eb
-
SSDEEP
24576:zv3/fTLF671TilQFG4P5PMkibTJH+2Q/ynKeWYKpGncHBN/VxjzSRLgxc2o:Lz071uv4BPMkibTIA5CJKxX
Malware Config
Targets
-
-
Target
3b3224ae359572a429e6d1dce50c7148_JaffaCakes118
-
Size
1.5MB
-
MD5
3b3224ae359572a429e6d1dce50c7148
-
SHA1
6e3b674eb7dd41be16759de454c8fb32bece5388
-
SHA256
d150b435b9a5bf4a9bf9159862ed3ebdb857405c17a4e8ec580361f4d45f17ad
-
SHA512
54a5328f0e8387d549fd53ec469b7a7f5cb2d4ab3c674b69af5d706ccc3e6cd7bad6413578afa7555a386c470d0d52af6af1a0ab6ea4f893de6b86502f24c2eb
-
SSDEEP
24576:zv3/fTLF671TilQFG4P5PMkibTJH+2Q/ynKeWYKpGncHBN/VxjzSRLgxc2o:Lz071uv4BPMkibTIA5CJKxX
Score10/10-
xmrig
XMRig is a high performance, open source, cross platform CPU/GPU miner.
-
XMRig Miner payload
-
Blocklisted process makes network request
-
Command and Scripting Interpreter: PowerShell
Powershell Invoke Web Request.
-
Executes dropped EXE
-
Loads dropped DLL
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-
Legitimate hosting services abused for malware hosting/C2
-