Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

7

webinjects.js

windows7-x64

3

webinjects.js

windows10-2004-x64

3

zsb.exe

windows7-x64

7

zsb.exe

windows10-2004-x64

7

server[php]/cp.js

windows7-x64

3

server[php]/cp.js

windows10-2004-x64

3

server[php...ass.js

windows7-x64

3

server[php...ass.js

windows10-2004-x64

3

server[php..._db.js

windows7-x64

3

server[php..._db.js

windows10-2004-x64

3

server[php...les.js

windows7-x64

3

server[php...les.js

windows10-2004-x64

3

server[php...r.html

windows7-x64

3

server[php...r.html

windows10-2004-x64

3

server[php...r.html

windows7-x64

3

server[php...r.html

windows10-2004-x64

3

server[php...ex.ps1

windows7-x64

3

server[php...ex.ps1

windows10-2004-x64

3

server[php...enu.js

windows7-x64

3

server[php...enu.js

windows10-2004-x64

3

server[php...l.html

windows7-x64

3

server[php...l.html

windows10-2004-x64

3

Builder.Pa...cts.js

windows7-x64

3

Builder.Pa...cts.js

windows10-2004-x64

3

Builder.Pa...us.exe

windows7-x64

10

Builder.Pa...us.exe

windows10-2004-x64

10

Builder.Panel/zsb.exe

windows7-x64

7

Builder.Panel/zsb.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2ab29016b3293871bd76b520af6255ef_JaffaCakes118

  • Size

    4.3MB

  • MD5

    2ab29016b3293871bd76b520af6255ef

  • SHA1

    a28fc86d07283b23c5a4609eca672be0653f9413

  • SHA256

    dea137b7286f22ec0e69d7d85dc14ebacc4951d70d2303bd2b4f201cf4a52334

  • SHA512

    d6f7b215a4ed125626e5d36961e389cfbebfcdb33b1f9e46c96c13d2de7749c417481cae0fcc9d82b9188755dbd28adcc8d257bf7ff0c1224651950f8c3a146c

  • SSDEEP

    98304:zhi9+vG61S0je0fb8uPdferpaSUFSD6QAapb53C0hdTNBLOAAnL8w3n3:l2/+See0fAQfOpaXSDxAaC0zjLOAuIwn

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 2 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Unsigned PE 5 IoCs

    Checks for missing Authenticode signature.

Files

  • 2ab29016b3293871bd76b520af6255ef_JaffaCakes118
    .zip
  • Builder.Panel/builder.rar
    .rar
  • config.txt
  • webinjects.txt
    .js
  • zsb.exe
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections

  • out.upx
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections

  • Builder.Panel/config.txt
  • Builder.Panel/server[php].rar
    .rar
  • server[php]/cp.php
    .js
  • server[php]/gate.php
  • server[php]/install/geobase.txt
  • server[php]/install/index.php
  • server[php]/system/.htaccess
  • server[php]/system/botnet_bots.lng.en.php
  • server[php]/system/botnet_bots.lng.ru.php
  • server[php]/system/botnet_bots.php
  • server[php]/system/botnet_scripts.lng.en.php
  • server[php]/system/botnet_scripts.lng.ru.php
  • server[php]/system/botnet_scripts.php
  • server[php]/system/fsarc.php
  • server[php]/system/global.php
  • server[php]/system/jabberclass.php
    .js
  • server[php]/system/lng.en.php
  • server[php]/system/lng.ru.php
  • server[php]/system/reports_db.lng.en.php
  • server[php]/system/reports_db.lng.ru.php
  • server[php]/system/reports_db.php
    .js
  • server[php]/system/reports_files.lng.en.php
  • server[php]/system/reports_files.lng.ru.php
  • server[php]/system/reports_files.php
    .js
  • server[php]/system/reports_jn.lng.en.php
  • server[php]/system/reports_jn.lng.ru.php
  • server[php]/system/reports_jn.php
  • server[php]/system/stats_main.lng.en.php
  • server[php]/system/stats_main.lng.ru.php
  • server[php]/system/stats_main.php
  • server[php]/system/stats_os.lng.en.php
  • server[php]/system/stats_os.lng.ru.php
  • server[php]/system/stats_os.php
  • server[php]/system/sys_info.lng.en.php
  • server[php]/system/sys_info.lng.ru.php
  • server[php]/system/sys_info.php
  • server[php]/system/sys_options.lng.en.php
  • server[php]/system/sys_options.lng.ru.php
  • server[php]/system/sys_options.php
  • server[php]/system/sys_user.lng.en.php
  • server[php]/system/sys_user.lng.ru.php
  • server[php]/system/sys_user.php
  • server[php]/system/sys_users.lng.en.php
  • server[php]/system/sys_users.lng.ru.php
  • server[php]/system/sys_users.php
  • server[php]/theme/failed.png
    .png
  • server[php]/theme/footer.html
  • server[php]/theme/header.html
    .html
  • server[php]/theme/index.php
    .ps1
  • server[php]/theme/popupmenu.js
    .js
  • server[php]/theme/small.html
    .html
  • server[php]/theme/style.css
  • server[php]/theme/throbber.gif
    .gif
  • Builder.Panel/settings.ini
  • Builder.Panel/webinjects.txt
    .js
  • Builder.Panel/zeus.exe
    .exe windows:4 windows x86 arch:x86

    68f013d7437aa653a8a98a05807afeb1


    Headers

    Imports

    Sections

  • Builder.Panel/zsb.exe
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections

  • out.upx
    .exe windows:5 windows x86 arch:x86


    Headers

    Sections

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.