Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    de3c929b380bec8979d07d3ed0474bb9_JaffaCakes118

  • Size

    372KB

  • Sample

    240913-m79smayfml

  • MD5

    de3c929b380bec8979d07d3ed0474bb9

  • SHA1

    ac57cd822711c10854019e6f0223722721773d12

  • SHA256

    7b0c8f3b184e6145134f9ca9287e49a5f442c5c78819805b74362a982a3c59d0

  • SHA512

    38a1918bb41f7a63f1125b8cfd9efaa96f28ee0788616e52c31505e8a1c48b6c9f46e160598bb997fd9a7ce03bc663cf49ea558b072fb07ae161ba7508df7270

  • SSDEEP

    6144:Qh+YvMT1yfXqGzKyt3PPkfrm6DWJg3xDEnwT14hagfipuynCOMWjJsaOv:QFvMTw/p1tfarmSEna14ha2ipuyCOMLv

Malware Config

Extracted

Family

gozi

Targets

    • Target

      de3c929b380bec8979d07d3ed0474bb9_JaffaCakes118

    • Size

      372KB

    • MD5

      de3c929b380bec8979d07d3ed0474bb9

    • SHA1

      ac57cd822711c10854019e6f0223722721773d12

    • SHA256

      7b0c8f3b184e6145134f9ca9287e49a5f442c5c78819805b74362a982a3c59d0

    • SHA512

      38a1918bb41f7a63f1125b8cfd9efaa96f28ee0788616e52c31505e8a1c48b6c9f46e160598bb997fd9a7ce03bc663cf49ea558b072fb07ae161ba7508df7270

    • SSDEEP

      6144:Qh+YvMT1yfXqGzKyt3PPkfrm6DWJg3xDEnwT14hagfipuynCOMWjJsaOv:QFvMTw/p1tfarmSEna14ha2ipuyCOMLv

    • Gozi

      Gozi is a well-known and widely distributed banking trojan.

MITRE ATT&CK Enterprise v15

Tasks