Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    c848dc1cb164829d89c5360b58247d83_JaffaCakes118

  • Size

    208KB

  • Sample

    241205-sjqmqswkbn

  • MD5

    c848dc1cb164829d89c5360b58247d83

  • SHA1

    3d2eaeb1984048e1fccbf7746256845dff0fef6c

  • SHA256

    69983d88f5532d380cb8df45f87c4a5b40d88cd830705e0533413b2ab34d98e4

  • SHA512

    816bd532fdb93cc65d23946b81b4cfffacdc0baa821f5f8454353457e5a9697cbdbf917bf8de3a83cca8bde0d7ce8764380fe1732dbf286fadf8fbf5a5aa377c

  • SSDEEP

    3072:TBQAhE6nENUpw7mf1wbHBtlN+SJHdITasSaQrASLasjaPV7o2yJw5/uRLuJu2TCV:TBbhs+1AHblVRmXerVJWFyJpKJ7PBT

Malware Config

Targets

    • Target

      c848dc1cb164829d89c5360b58247d83_JaffaCakes118

    • Size

      208KB

    • MD5

      c848dc1cb164829d89c5360b58247d83

    • SHA1

      3d2eaeb1984048e1fccbf7746256845dff0fef6c

    • SHA256

      69983d88f5532d380cb8df45f87c4a5b40d88cd830705e0533413b2ab34d98e4

    • SHA512

      816bd532fdb93cc65d23946b81b4cfffacdc0baa821f5f8454353457e5a9697cbdbf917bf8de3a83cca8bde0d7ce8764380fe1732dbf286fadf8fbf5a5aa377c

    • SSDEEP

      3072:TBQAhE6nENUpw7mf1wbHBtlN+SJHdITasSaQrASLasjaPV7o2yJw5/uRLuJu2TCV:TBbhs+1AHblVRmXerVJWFyJpKJ7PBT

    • Cycbot

      Cycbot is a backdoor and trojan written in C++..

    • Cycbot family

    • Detects Cycbot payload

      Cycbot is a backdoor and trojan written in C++.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks