Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    01235b8629a95ca2157834d6d6507676_JaffaCakes118

  • Size

    390KB

  • Sample

    240727-1mskhazgnk

  • MD5

    01235b8629a95ca2157834d6d6507676

  • SHA1

    f665a09ddf5008eb3bb2033d0790c0e3e59c52d6

  • SHA256

    908d9241f53b0d2b5916636a2860b345047d99228d87cb2183ecdeb4e61cd147

  • SHA512

    83a918e6a9ebadaf1f43ee38810acf591e80592fe9bb71741b0530aa11475d8cc1d53159181b5c7749aadac7f46272dbbcdc452999c55d61d7937f3a8e7a63f8

  • SSDEEP

    3072:8hOm2sI93UufdC67cimD5t251UrRE9TTFwD7arfwYB:8cm7ImGddXmNt251UriZFwfs/B

Malware Config

Targets

    • Target

      01235b8629a95ca2157834d6d6507676_JaffaCakes118

    • Size

      390KB

    • MD5

      01235b8629a95ca2157834d6d6507676

    • SHA1

      f665a09ddf5008eb3bb2033d0790c0e3e59c52d6

    • SHA256

      908d9241f53b0d2b5916636a2860b345047d99228d87cb2183ecdeb4e61cd147

    • SHA512

      83a918e6a9ebadaf1f43ee38810acf591e80592fe9bb71741b0530aa11475d8cc1d53159181b5c7749aadac7f46272dbbcdc452999c55d61d7937f3a8e7a63f8

    • SSDEEP

      3072:8hOm2sI93UufdC67cimD5t251UrRE9TTFwD7arfwYB:8cm7ImGddXmNt251UriZFwfs/B

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks