Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    007c9512b33de86081c61634e43cde0c_JaffaCakes118

  • Size

    339KB

  • Sample

    240930-kw59yswflq

  • MD5

    007c9512b33de86081c61634e43cde0c

  • SHA1

    e7b81877b71ad61eab473055c3b92678ce8edcbd

  • SHA256

    b840f87d8c6c47050c0a87b84e17b4aa4af28c9f3f2c5a0eda074f8b44eb82cf

  • SHA512

    58268f809d8f507066849b3c17947bd98ea4b0f154d4079c52415eedb12e013c000adcf304339c3301eb011de1901eccc2ddf23819a6a543436e8e2f95194a08

  • SSDEEP

    6144:5wWn0hZYukuCidvxxOtOGbZpaOSMHVv+UTXH63D/X/scooLdCDSI/E8aY4Vcl9mk:yW8tkVidv7yT7aU1bH2/scTdC+kE8UV8

Malware Config

Targets

    • Target

      007c9512b33de86081c61634e43cde0c_JaffaCakes118

    • Size

      339KB

    • MD5

      007c9512b33de86081c61634e43cde0c

    • SHA1

      e7b81877b71ad61eab473055c3b92678ce8edcbd

    • SHA256

      b840f87d8c6c47050c0a87b84e17b4aa4af28c9f3f2c5a0eda074f8b44eb82cf

    • SHA512

      58268f809d8f507066849b3c17947bd98ea4b0f154d4079c52415eedb12e013c000adcf304339c3301eb011de1901eccc2ddf23819a6a543436e8e2f95194a08

    • SSDEEP

      6144:5wWn0hZYukuCidvxxOtOGbZpaOSMHVv+UTXH63D/X/scooLdCDSI/E8aY4Vcl9mk:yW8tkVidv7yT7aU1bH2/scTdC+kE8UV8

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

MITRE ATT&CK Enterprise v15

Tasks