Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
cb92ffc0d0d0905eb7b1274de57b5af9_JaffaCakes118
-
Size
186KB
-
Sample
241206-hhbr3svmcs
-
MD5
cb92ffc0d0d0905eb7b1274de57b5af9
-
SHA1
4d7df5f17646b628655b2f3f0df37a6c8ee0bdb3
-
SHA256
c99bc18be5b58e344808109b19374ca2d4691109e210900a63ca021bb602f86f
-
SHA512
0191164b011d93e63ba22d6f03a02556f0b8a3a1f0e3df329a0f3bd0b36a6bb4458026c1a85a9b34640c61a94a51ff3d17fcb5e19b7abf01fc89e7c314fc477c
-
SSDEEP
3072:WxymEZpYy5vXTz2eQhBQWAsEa27XKGMK1UUVAyAMt41f8sqgPAICw/:WxymEvD5m1hlrl2DKq1jAIOfVzvC
Malware Config
Targets
-
-
Target
cb92ffc0d0d0905eb7b1274de57b5af9_JaffaCakes118
-
Size
186KB
-
MD5
cb92ffc0d0d0905eb7b1274de57b5af9
-
SHA1
4d7df5f17646b628655b2f3f0df37a6c8ee0bdb3
-
SHA256
c99bc18be5b58e344808109b19374ca2d4691109e210900a63ca021bb602f86f
-
SHA512
0191164b011d93e63ba22d6f03a02556f0b8a3a1f0e3df329a0f3bd0b36a6bb4458026c1a85a9b34640c61a94a51ff3d17fcb5e19b7abf01fc89e7c314fc477c
-
SSDEEP
3072:WxymEZpYy5vXTz2eQhBQWAsEa27XKGMK1UUVAyAMt41f8sqgPAICw/:WxymEvD5m1hlrl2DKq1jAIOfVzvC
Score10/10-
Cycbot
Cycbot is a backdoor and trojan written in C++..
-
Cycbot family
-
Detects Cycbot payload
Cycbot is a backdoor and trojan written in C++.
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Adds Run key to start application
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-