Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    8604b6a8c872a2cdae485b3d98d2bcc2_JaffaCakes118

  • Size

    101KB

  • Sample

    240531-fgasaaff2s

  • MD5

    8604b6a8c872a2cdae485b3d98d2bcc2

  • SHA1

    cedebb7fc814e219c9e27a45bec270b0d9534a13

  • SHA256

    a6a54a331e4403156ec6893c5f4760e5d65d760a16a97e33b36098220535a003

  • SHA512

    560e233d447ba2f0b664437f739d518a232a9d84c2147ee2f256b8a33a81d5e14c21ccd21f9f40a7b33880fbdcdc0f5ca95a2374d88ab49eaa5020f572449e2b

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxND+3T4+C2lmf6g7xmIi6h7zp:ymb3NkkiQ3mdBjF+3TU20L46FV

Malware Config

Targets

    • Target

      8604b6a8c872a2cdae485b3d98d2bcc2_JaffaCakes118

    • Size

      101KB

    • MD5

      8604b6a8c872a2cdae485b3d98d2bcc2

    • SHA1

      cedebb7fc814e219c9e27a45bec270b0d9534a13

    • SHA256

      a6a54a331e4403156ec6893c5f4760e5d65d760a16a97e33b36098220535a003

    • SHA512

      560e233d447ba2f0b664437f739d518a232a9d84c2147ee2f256b8a33a81d5e14c21ccd21f9f40a7b33880fbdcdc0f5ca95a2374d88ab49eaa5020f572449e2b

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxND+3T4+C2lmf6g7xmIi6h7zp:ymb3NkkiQ3mdBjF+3TU20L46FV

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks