Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    dac0a81eab0001382e0f686e9bbfbcfd_JaffaCakes118

  • Size

    176KB

  • Sample

    241209-v5j37azqcj

  • MD5

    dac0a81eab0001382e0f686e9bbfbcfd

  • SHA1

    50726e339860e0930d1a1f0f1102baa4376e7a11

  • SHA256

    a2ede5995bcc89981e50e0339c4e0ab226eb203b11fd44d6c049c148db9567e1

  • SHA512

    c362f533fb677160cf5f4e920fed4d7373f1244693fe132a8e862d3b0b21a6eee3c207dbfa434e4380631371801418c213a191da25fa429b9f6a48de6819e869

  • SSDEEP

    3072:KS/rNw12pxo1GpInqUxNWOrAkM13D9l7xQP5dMAiFGNDvzjjqZHb4:KL8pxFInCFhR9ldQP5dMAgGNHq74

Malware Config

Targets

    • Target

      dac0a81eab0001382e0f686e9bbfbcfd_JaffaCakes118

    • Size

      176KB

    • MD5

      dac0a81eab0001382e0f686e9bbfbcfd

    • SHA1

      50726e339860e0930d1a1f0f1102baa4376e7a11

    • SHA256

      a2ede5995bcc89981e50e0339c4e0ab226eb203b11fd44d6c049c148db9567e1

    • SHA512

      c362f533fb677160cf5f4e920fed4d7373f1244693fe132a8e862d3b0b21a6eee3c207dbfa434e4380631371801418c213a191da25fa429b9f6a48de6819e869

    • SSDEEP

      3072:KS/rNw12pxo1GpInqUxNWOrAkM13D9l7xQP5dMAiFGNDvzjjqZHb4:KL8pxFInCFhR9ldQP5dMAgGNHq74

    • Cycbot

      Cycbot is a backdoor and trojan written in C++..

    • Cycbot family

    • Detects Cycbot payload

      Cycbot is a backdoor and trojan written in C++.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks