Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
fc816c6e9ffaab8debc100eca12b5b8e_JaffaCakes118
-
Size
684KB
-
Sample
240928-ryzzaatcpa
-
MD5
fc816c6e9ffaab8debc100eca12b5b8e
-
SHA1
f569b5d33144a320da5713c2d0f9f08dfdd37a90
-
SHA256
7ea914a78e92c54a48e9215e8e4e3511406d8a2646895ad24dcd1877fdf60af5
-
SHA512
dd5970d435ade84eac57e90d058d2c6e239aeb6bc371454decce61d2eea6a30947d2352f60a2567a7b86099079b15e7724a0b97f95e67b11e2c415bd4652455a
-
SSDEEP
12288:jWMaWg1JJt3+fbeSJCPtYYW21/o7pWoFAiINF4gv++IV6d7VIbWfSO7AgLUztWIN:VafJp+bJQYYW21teA1Nmgv++06r188qP
Malware Config
Extracted
formbook
3.9
tt0
suannaidacha.com
jp1188.com
southernmostcbd.us
nuca.ltd
1he6.science
cpobill.com
bitcoinfeesinfo.com
ptdo2f.info
kauaispoutinghorn.com
salihkoroglu.com
thighvoltagerocks.com
greatvalleytopsoil.com
tallhairy.net
wordpressindex.com
race615.com
craftsmanadmiration.com
chinaicewine.net
iotacams.com
gadgetcucina.com
vannes-mobil-home.com
Targets
-
-
Target
fc816c6e9ffaab8debc100eca12b5b8e_JaffaCakes118
-
Size
684KB
-
MD5
fc816c6e9ffaab8debc100eca12b5b8e
-
SHA1
f569b5d33144a320da5713c2d0f9f08dfdd37a90
-
SHA256
7ea914a78e92c54a48e9215e8e4e3511406d8a2646895ad24dcd1877fdf60af5
-
SHA512
dd5970d435ade84eac57e90d058d2c6e239aeb6bc371454decce61d2eea6a30947d2352f60a2567a7b86099079b15e7724a0b97f95e67b11e2c415bd4652455a
-
SSDEEP
12288:jWMaWg1JJt3+fbeSJCPtYYW21/o7pWoFAiINF4gv++IV6d7VIbWfSO7AgLUztWIN:VafJp+bJQYYW21teA1Nmgv++06r188qP
Score10/10-
Formbook
Formbook is a data stealing malware which is capable of stealing data.
-
Formbook payload
-