Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
cb92ffc0d0d0905eb7b1274de57b5af9_JaffaCakes118
-
Size
186KB
-
Sample
241206-hhbr3svmcs
-
MD5
cb92ffc0d0d0905eb7b1274de57b5af9
-
SHA1
4d7df5f17646b628655b2f3f0df37a6c8ee0bdb3
-
SHA256
c99bc18be5b58e344808109b19374ca2d4691109e210900a63ca021bb602f86f
-
SHA512
0191164b011d93e63ba22d6f03a02556f0b8a3a1f0e3df329a0f3bd0b36a6bb4458026c1a85a9b34640c61a94a51ff3d17fcb5e19b7abf01fc89e7c314fc477c
-
SSDEEP
3072:WxymEZpYy5vXTz2eQhBQWAsEa27XKGMK1UUVAyAMt41f8sqgPAICw/:WxymEvD5m1hlrl2DKq1jAIOfVzvC
Static task
static1
Behavioral task
behavioral1
Sample
cb92ffc0d0d0905eb7b1274de57b5af9_JaffaCakes118.exe
Resource
win7-20240729-en
Behavioral task
behavioral2
Sample
cb92ffc0d0d0905eb7b1274de57b5af9_JaffaCakes118.exe
Resource
win10v2004-20241007-en
Malware Config
Targets
-
-
Target
cb92ffc0d0d0905eb7b1274de57b5af9_JaffaCakes118
-
Size
186KB
-
MD5
cb92ffc0d0d0905eb7b1274de57b5af9
-
SHA1
4d7df5f17646b628655b2f3f0df37a6c8ee0bdb3
-
SHA256
c99bc18be5b58e344808109b19374ca2d4691109e210900a63ca021bb602f86f
-
SHA512
0191164b011d93e63ba22d6f03a02556f0b8a3a1f0e3df329a0f3bd0b36a6bb4458026c1a85a9b34640c61a94a51ff3d17fcb5e19b7abf01fc89e7c314fc477c
-
SSDEEP
3072:WxymEZpYy5vXTz2eQhBQWAsEa27XKGMK1UUVAyAMt41f8sqgPAICw/:WxymEvD5m1hlrl2DKq1jAIOfVzvC
-
Cycbot family
-
Detects Cycbot payload
Cycbot is a backdoor and trojan written in C++.
-
Adds Run key to start application
-