Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

3

Static

static

1

phatbot_al...pp.vbs

windows7-x64

1

phatbot_al...pp.vbs

windows10-2004-x64

1

phatbot_al...cpp.js

windows7-x64

3

phatbot_al...cpp.js

windows10-2004-x64

3

phatbot_al...cpp.js

windows7-x64

3

phatbot_al...cpp.js

windows10-2004-x64

3

phatbot_al...n-base

ubuntu-18.04-amd64

3

phatbot_al...n-base

debian-9-armhf

1

phatbot_al...n-base

debian-9-mips

1

phatbot_al...n-base

debian-9-mipsel

1

phatbot_al...pp.vbs

windows7-x64

1

phatbot_al...pp.vbs

windows10-2004-x64

1

phatbot_al...cpp.js

windows7-x64

3

phatbot_al...cpp.js

windows10-2004-x64

3

phatbot_al...cpp.js

windows7-x64

3

phatbot_al...cpp.js

windows10-2004-x64

3

phatbot_al...cpp.js

windows7-x64

3

phatbot_al...cpp.js

windows10-2004-x64

3

phatbot_al...cpp.js

windows7-x64

3

phatbot_al...cpp.js

windows10-2004-x64

3

phatbot_al...3.html

windows7-x64

1

phatbot_al...3.html

windows10-2004-x64

1

phatbot_al...ot.vbs

windows7-x64

1

phatbot_al...ot.vbs

windows10-2004-x64

1

phatbot_al...ing.js

windows7-x64

3

phatbot_al...ing.js

windows10-2004-x64

3

phatbot_al...ead.js

windows7-x64

3

phatbot_al...ead.js

windows10-2004-x64

3

phatbot_al...bug.sh

ubuntu-18.04-amd64

3

phatbot_al...bug.sh

debian-9-armhf

1

phatbot_al...bug.sh

debian-9-mips

1

phatbot_al...bug.sh

debian-9-mipsel

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    66e512fbef3ad14530667679946dfba2_JaffaCakes118

  • Size

    578KB

  • Sample

    240723-kramgsxdlh

  • MD5

    66e512fbef3ad14530667679946dfba2

  • SHA1

    35e03fed3b5ae6c03c16623a2b72f49f3f565af5

  • SHA256

    958fb1daef29d89a033aa12bb776121d8b347eaf3155cea11ecbda987e0aa977

  • SHA512

    d482abf0a091a05ef3d71a78cb77e1d9076d5e5a4709e8a77e88d36b486b7279d351fd62295fba57ad643da2642ba7c3b10597cb7985d57c9d33c390d36685c9

  • SSDEEP

    12288:vMI8iJ19PUGLQ4WFWotOdnZqGJ60d/15YrOgV0FAj4wWlWPw1XKGBRXN/zYMMg6:vM8J3PUGLQyTd4k9dd05V0FMbwWI1XKL

Score
3/10
executionlinux

Malware Config

Targets

    • Target

      phatbot_alpha1/ago4/.svn/text-base/bot.cpp.svn-base

    • Size

      18KB

    • MD5

      161ed09b3ad26a97c3c2d8eb289db503

    • SHA1

      6c6497740d4b90eb507ec5f42d6701bfbfc9d5cc

    • SHA256

      4553f99a59ed321e173287a00b9505803946c9d86a214ec90ef498120624727f

    • SHA512

      03b3e54dd442882689b0cc9cfaf6482c0d3df9ad590e77d4e314f127ffb6b90fee2bf965f3cbd40796bba579d8878d56c7978f62ba847c84751304874fe34035

    • SSDEEP

      384:xiqUBQUxSkgc0X2+nGhCtyMs5gLU6FZ7TANyNOa2j7zgAyVuVvXGe+B106hFFKgG:xiqUBQUxSkgc0X2+nGhCtyMs+U6FZ7Ex

    Score
    1/10
    behavioral1behavioral2

    • Target

      phatbot_alpha1/ago4/.svn/text-base/cstring.cpp.svn-base

    • Size

      9KB

    • MD5

      b9ea3520f46d0255b6a0fb88d1e762f9

    • SHA1

      4c7813b6b2f7691427780589fdb2eb53f07ab6a1

    • SHA256

      87acce302976303d1dd0087fd41e301c981d5be6740dcf319044074d2c8e495e

    • SHA512

      3b9cbc97f2bf9fe52ebecca341502a86e78acaaaf679b13d2aa9307d10cc968c720d8033a40dd3bf2b3cf8d4e12ae843ac2637f746cb38289c3bf46b4f7df260

    • SSDEEP

      192:xtYqUvLJhqeMSDz7cs1VqcH8H6k3MBXbrOunXx0ozi3p6Uzh:xiq0L/qU7cs1Vqs8ak3OXbrOunBaM6

    Score
    3/10
    execution
    behavioral3behavioral4

    • Target

      phatbot_alpha1/ago4/.svn/text-base/cthread.cpp.svn-base

    • Size

      7KB

    • MD5

      325c9294240b2f6ad7d00308a3abf50d

    • SHA1

      0dd39126faad2df33fe2cbfe44402fabece64dc1

    • SHA256

      1cc4bb7fd312e6fdfd80c7cd265340b1fcb3f56b28a187e79aac9fdde5272649

    • SHA512

      6138fcabc36265306988aec9b0f41f56723e0028fd050fc86cc0ed43815abc804e5abf5bc081298320e03c90897b6e5f33fd587673decb23bb46f5f79edb9207

    • SSDEEP

      96:xt5mqU91mYXRKBZG4BNn49r5AiYXzWFquDdaWNUaNnsN3oVCE+EN7LV6xCzzX+Ys:xtYqUjbBwsFqZoD6tRGwmRbqrge

    Score
    3/10
    execution
    behavioral5behavioral6

    • Target

      phatbot_alpha1/ago4/.svn/text-base/debug.sh.svn-base

    • Size

      61B

    • MD5

      e69abc2d15e984622252df96cd1d81a1

    • SHA1

      e91aa8294cea293108173ebacacabe6db64d8487

    • SHA256

      20de10ce984a855df552f8da3b93ff1c100f120f4f5ff9c6419d0bae9a71ac38

    • SHA512

      1d1129bd2b23dd0ae9770a52acd8716fa8a1a0694b8891395a12b6ce0e6c548d65e85413f7276bc0cf446bdfb2e186ee5de9c4ca4b61e9cc3bf3b05bd2129c49

    Score
    3/10
    behavioral10behavioral7behavioral8behavioral9

    • Target

      phatbot_alpha1/ago4/.svn/text-base/installer.cpp.svn-base

    • Size

      13KB

    • MD5

      f9d56fd9269f3375b9e2914d2e9f5ae2

    • SHA1

      cf9a19446b5d1c1a416991225496fdfd3a123de6

    • SHA256

      4b6c91736feeb67f71b0caf69fa5e84ba2df3328e19c2e40f0aee2116076ffd8

    • SHA512

      a5f5eb3cc1651cce1109a629aedbd8a43ececec9b2fcd993522b6e8e13a61493951761d84820997a01455e4a779273776c54d667bda7dae9d47a7d299442afee

    • SSDEEP

      384:xiq5keEb2x0WTSAZARGhzuoBAYYRvbN7kBKwy/Pl6vKc6SrK0J53:xiqxEIHlZfGvbN7sycDW0L3

    Score
    1/10
    behavioral11behavioral12

    • Target

      phatbot_alpha1/ago4/.svn/text-base/mainctrl.cpp.svn-base

    • Size

      8KB

    • MD5

      6c7ab1b4082b9f069c105970a6fabce6

    • SHA1

      5bf0258dd77c29167024c083a896a233a7d7a95a

    • SHA256

      1864a94f0acbd78abab1b78679a79ee65112261c617b67b42a20820f9a80bf34

    • SHA512

      00bf9f5aba70719ac41050c5e1af64a2fdee3d72179e6ad2572985eb6b1bf7943fc2926447e18234ddd7f2b502d29f10eb61d751ef87ea8c3728dd4e04b598d9

    • SSDEEP

      96:xt5mqU9y9B1xE9HhVD58Bf4O6HC6GOJzo/q3TqbiEO39Cs2kfl+L9x2lLkEcVcd/:xtYqU8B1xy64PRaeEqZojB24EDjr

    Score
    3/10
    execution
    behavioral13behavioral14

    • Target

      phatbot_alpha1/ago4/.svn/text-base/p2p.cpp.svn-base

    • Size

      15KB

    • MD5

      9df216f299c4caf71d74f9e1a50a5181

    • SHA1

      41d467a15a0b53adf66dd0762c915bd82e69da64

    • SHA256

      e272f8f0489f1169915b62516e61e61afde2d43f727f549a7a1e4151f6a3ac90

    • SHA512

      69de3812b2472b347cc33a283cd86fca9bb91fbaca187cd4dc08fed0905e1d91e700e18535e82949336af9140394dd1469543adf21a7f896ee0ddca70e5bbe34

    • SSDEEP

      384:00EM/wsJYZRLNkPMa48fLu3c22oqFWFJSdb7+KOAdY8zXFNOhtg:00EM/wRZRRcN4QTJoq0DSt7yASQghtg

    Score
    3/10
    execution
    behavioral15behavioral16

    • Target

      phatbot_alpha1/ago4/.svn/text-base/smtp_logic.cpp.svn-base

    • Size

      15KB

    • MD5

      28d67a63c627beee86724586bc62abaa

    • SHA1

      3ca8bf2b98bef36c047210c85b0b82ce0fc4aac9

    • SHA256

      4fd9954327a318484d240c43f22d54874f8ede797e2cd5f4a3b44871987658ed

    • SHA512

      d1d5a77e5a748c4f37b82b3506635be5e75778b551679f994027b6fb24f9f8d9401b1bc86d6350ec170685841a92e1a0e9fab3eebc407dc828945fce8276a737

    • SSDEEP

      384:xRCEDXX5M0/WwTUqMpqJxtuCrBuaZ89O3C/WuTUNDZM0FqJDtuCrBug:xR3XX5MGWUUqMWc889kYW6Us0qqg

    Score
    3/10
    execution
    behavioral17behavioral18

    • Target

      phatbot_alpha1/ago4/.svn/text-base/utility.cpp.svn-base

    • Size

      65KB

    • MD5

      caf52c16737cdd6edbb3692e969b4ab0

    • SHA1

      975c7202a430e65ed266752b791fd6d57a7e8e64

    • SHA256

      93468e31d70fbfded332997ab7b1699b4f94e865ba9fff3f802485aa69795fbf

    • SHA512

      8f5f28586199a184a054a1a1f69926dab9d9dcfb33c7e6c9abd5448bc7456b8b37e00a8b9e5e2529fba6d7d4dd6ec56b0946dacbbc94ae66b3bee676507e4fd7

    • SSDEEP

      1536:TgeecvbZ5/NRrrvdUc38GdTGpJx9A7AF+FfnomfGT01SRR:wcvbZ5/NRrrvdUc38hJxR+xXO08R

    Score
    3/10
    execution
    behavioral19behavioral20

    • Target

      phatbot_alpha1/ago4/agobot3.plg

    • Size

      10KB

    • MD5

      00afc16868e3b4d1501cb2e3f1a9bd2d

    • SHA1

      36360645f49e22afd8f87dfa3c03b9f225d4a868

    • SHA256

      5b7c721b03e624f691d7c7eb7a06c753442f078fd23b421de0ab01cd3c3dc8ae

    • SHA512

      81e6ecdbeb528b6369538b60e69b6476ab703e338ada1bc5db8dc86296e7e74ac1d5c03c95637cdc2e32832f803caf92a0c7553a4aabcdf453fd30dc5cc7660d

    • SSDEEP

      192:rV8GeMkUz0oEAycZmb8xivkJiyBHlzuXrT33a8Eth4O9wDgvr1xLM0+281zIDRTS:rV8GeMkUz0oEAycZmb8xivkJiyBHlzub

    Score
    1/10
    behavioral21behavioral22

    • Target

      phatbot_alpha1/ago4/bot.cpp

    • Size

      18KB

    • MD5

      161ed09b3ad26a97c3c2d8eb289db503

    • SHA1

      6c6497740d4b90eb507ec5f42d6701bfbfc9d5cc

    • SHA256

      4553f99a59ed321e173287a00b9505803946c9d86a214ec90ef498120624727f

    • SHA512

      03b3e54dd442882689b0cc9cfaf6482c0d3df9ad590e77d4e314f127ffb6b90fee2bf965f3cbd40796bba579d8878d56c7978f62ba847c84751304874fe34035

    • SSDEEP

      384:xiqUBQUxSkgc0X2+nGhCtyMs5gLU6FZ7TANyNOa2j7zgAyVuVvXGe+B106hFFKgG:xiqUBQUxSkgc0X2+nGhCtyMs+U6FZ7Ex

    Score
    1/10
    behavioral23behavioral24

    • Target

      phatbot_alpha1/ago4/cstring.cpp

    • Size

      9KB

    • MD5

      b9ea3520f46d0255b6a0fb88d1e762f9

    • SHA1

      4c7813b6b2f7691427780589fdb2eb53f07ab6a1

    • SHA256

      87acce302976303d1dd0087fd41e301c981d5be6740dcf319044074d2c8e495e

    • SHA512

      3b9cbc97f2bf9fe52ebecca341502a86e78acaaaf679b13d2aa9307d10cc968c720d8033a40dd3bf2b3cf8d4e12ae843ac2637f746cb38289c3bf46b4f7df260

    • SSDEEP

      192:xtYqUvLJhqeMSDz7cs1VqcH8H6k3MBXbrOunXx0ozi3p6Uzh:xiq0L/qU7cs1Vqs8ak3OXbrOunBaM6

    Score
    3/10
    execution
    behavioral25behavioral26

    • Target

      phatbot_alpha1/ago4/cthread.cpp

    • Size

      7KB

    • MD5

      325c9294240b2f6ad7d00308a3abf50d

    • SHA1

      0dd39126faad2df33fe2cbfe44402fabece64dc1

    • SHA256

      1cc4bb7fd312e6fdfd80c7cd265340b1fcb3f56b28a187e79aac9fdde5272649

    • SHA512

      6138fcabc36265306988aec9b0f41f56723e0028fd050fc86cc0ed43815abc804e5abf5bc081298320e03c90897b6e5f33fd587673decb23bb46f5f79edb9207

    • SSDEEP

      96:xt5mqU91mYXRKBZG4BNn49r5AiYXzWFquDdaWNUaNnsN3oVCE+EN7LV6xCzzX+Ys:xtYqUjbBwsFqZoD6tRGwmRbqrge

    Score
    3/10
    execution
    behavioral27behavioral28

    • Target

      phatbot_alpha1/ago4/debug.sh

    • Size

      61B

    • MD5

      e69abc2d15e984622252df96cd1d81a1

    • SHA1

      e91aa8294cea293108173ebacacabe6db64d8487

    • SHA256

      20de10ce984a855df552f8da3b93ff1c100f120f4f5ff9c6419d0bae9a71ac38

    • SHA512

      1d1129bd2b23dd0ae9770a52acd8716fa8a1a0694b8891395a12b6ce0e6c548d65e85413f7276bc0cf446bdfb2e186ee5de9c4ca4b61e9cc3bf3b05bd2129c49

    Score
    3/10
    behavioral29behavioral30behavioral31behavioral32

MITRE ATT&CK Enterprise v15

Tasks

static1

Score
1/10

behavioral1

Score
1/10

behavioral2

Score
1/10

behavioral3

execution
Score
3/10

behavioral4

execution
Score
3/10

behavioral5

execution
Score
3/10

behavioral6

execution
Score
3/10

behavioral7

Score
3/10

behavioral8

Score
1/10

behavioral9

Score
1/10

behavioral10

Score
1/10

behavioral11

Score
1/10

behavioral12

Score
1/10

behavioral13

execution
Score
3/10

behavioral14

execution
Score
3/10

behavioral15

execution
Score
3/10

behavioral16

execution
Score
3/10

behavioral17

execution
Score
3/10

behavioral18

execution
Score
3/10

behavioral19

execution
Score
3/10

behavioral20

execution
Score
3/10

behavioral21

Score
1/10

behavioral22

Score
1/10

behavioral23

Score
1/10

behavioral24

Score
1/10

behavioral25

execution
Score
3/10

behavioral26

execution
Score
3/10

behavioral27

execution
Score
3/10

behavioral28

execution
Score
3/10

behavioral29

Score
3/10

behavioral30

Score
1/10

behavioral31

Score
1/10

behavioral32

Score
1/10