Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    d632cd9da1c8dbec3722ca35e5221a4f_JaffaCakes118

  • Size

    28KB

  • Sample

    240909-nbpy1svbrn

  • MD5

    d632cd9da1c8dbec3722ca35e5221a4f

  • SHA1

    49f491416211903840112db1b744983106623e2a

  • SHA256

    9f4549d98b1a66dfdfa1358b5b291975a5bc8645ca9a8de790fbf58d38ed0e06

  • SHA512

    d7458cf29e86f08325718714741bfb6aebb3818c6019338b8be4d36e408ccf164abe6f0d5276a45bb93589804dae9ef3e2163ee88998b8ed8b2b1147a419ae63

  • SSDEEP

    384:k1GVhNN6ISrC4CFHzmjT7t2hIsr9qN2Mbns:k1dDMzCTer9

Score
10/10

Malware Config

Extracted

Family

gozi

Targets

    • Target

      d632cd9da1c8dbec3722ca35e5221a4f_JaffaCakes118

    • Size

      28KB

    • MD5

      d632cd9da1c8dbec3722ca35e5221a4f

    • SHA1

      49f491416211903840112db1b744983106623e2a

    • SHA256

      9f4549d98b1a66dfdfa1358b5b291975a5bc8645ca9a8de790fbf58d38ed0e06

    • SHA512

      d7458cf29e86f08325718714741bfb6aebb3818c6019338b8be4d36e408ccf164abe6f0d5276a45bb93589804dae9ef3e2163ee88998b8ed8b2b1147a419ae63

    • SSDEEP

      384:k1GVhNN6ISrC4CFHzmjT7t2hIsr9qN2Mbns:k1dDMzCTer9

    Score
    5/10
    • Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Enterprise v15

Tasks