Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    56c815ec26cacd728c009d4bf1fb4c4e_JaffaCakes118

  • Size

    76KB

  • Sample

    241018-lwwwysshnl

  • MD5

    56c815ec26cacd728c009d4bf1fb4c4e

  • SHA1

    571e1cf81f8105e2d33ed0bbe26ab8ea3879cb0f

  • SHA256

    efb7a67bd171bb0039de2d6cb871c2f368ac4f5bf134e38f412b5652457820b1

  • SHA512

    4f1fa1c8b7497394517cb32489a9ddbbf3f20696bbd1a1068e19d47f4465c09f5fc6fe2241c160346de35d7827d976b75c2dea023de51c11530870cbed28ff26

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIkpiZBf7+JB46m:ymb3NkkiQ3mdBjFIjZsJu

Malware Config

Targets

    • Target

      56c815ec26cacd728c009d4bf1fb4c4e_JaffaCakes118

    • Size

      76KB

    • MD5

      56c815ec26cacd728c009d4bf1fb4c4e

    • SHA1

      571e1cf81f8105e2d33ed0bbe26ab8ea3879cb0f

    • SHA256

      efb7a67bd171bb0039de2d6cb871c2f368ac4f5bf134e38f412b5652457820b1

    • SHA512

      4f1fa1c8b7497394517cb32489a9ddbbf3f20696bbd1a1068e19d47f4465c09f5fc6fe2241c160346de35d7827d976b75c2dea023de51c11530870cbed28ff26

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIkpiZBf7+JB46m:ymb3NkkiQ3mdBjFIjZsJu

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks