Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2a2c2285c01e3c1b43adb3a6423e6c6a_JaffaCakes118

  • Size

    184KB

  • Sample

    240707-3gy67steqc

  • MD5

    2a2c2285c01e3c1b43adb3a6423e6c6a

  • SHA1

    9f42318f982cc1ae1f44265aabc5d221eb7991dc

  • SHA256

    c01cf4c72282024ad54859adf661e4a9484e63af4ef0e7f53132afeb8b9672e4

  • SHA512

    5579839ad9a2c7f291ea31181c12c6820d1f94c84f4855c5bf16e5e2c4f92712c49daee025bc60df29c7c3cf89cb926f485cc31b1959f33888be900279429f87

  • SSDEEP

    3072:GAOkqXpPKnXkU64fT/O7fbpvcI2yuOssp5kSmrz9V4S5:GAOkjn0GL/O7lvcITYekSSpV

Malware Config

Extracted

Family

dridex

Botnet

22201

C2

207.148.81.119:443

185.157.82.209:8333

5.39.99.208:5412

rc4.plain
rc4.plain

Targets

    • Target

      2a2c2285c01e3c1b43adb3a6423e6c6a_JaffaCakes118

    • Size

      184KB

    • MD5

      2a2c2285c01e3c1b43adb3a6423e6c6a

    • SHA1

      9f42318f982cc1ae1f44265aabc5d221eb7991dc

    • SHA256

      c01cf4c72282024ad54859adf661e4a9484e63af4ef0e7f53132afeb8b9672e4

    • SHA512

      5579839ad9a2c7f291ea31181c12c6820d1f94c84f4855c5bf16e5e2c4f92712c49daee025bc60df29c7c3cf89cb926f485cc31b1959f33888be900279429f87

    • SSDEEP

      3072:GAOkqXpPKnXkU64fT/O7fbpvcI2yuOssp5kSmrz9V4S5:GAOkjn0GL/O7lvcITYekSSpV

    • Dridex

      Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.

    • Dridex Loader

      Detects Dridex both x86 and x64 loader in memory.

MITRE ATT&CK Matrix

Tasks