Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    e315dcdf0c2d2ca9bc113a0f41b5631c_JaffaCakes118

  • Size

    210KB

  • Sample

    241211-y8hlba1rdr

  • MD5

    e315dcdf0c2d2ca9bc113a0f41b5631c

  • SHA1

    dac5ece3896c5363815d4ae5d67d0ea4057f6598

  • SHA256

    8ccce028916c95e6a57c78c86c010834653f4723401135afbf49c9a2f62bd1f7

  • SHA512

    443cee5cfaca54aca1975664252aa98bc778fb50bde1f6e0a198071fa1d60b4041848998dd9c17a34628757e3351e93bae1b347e7160c151b9822575650436bb

  • SSDEEP

    3072:1jy+Jc2pW+ycmY9DKbzjvQtfbUgUCD8khVC2gx4ivWC76P5i07pZXGq6UR8Xbf7x:ZJJFmY9s5uHC2OVUnUqq68J

Malware Config

Targets

    • Target

      e315dcdf0c2d2ca9bc113a0f41b5631c_JaffaCakes118

    • Size

      210KB

    • MD5

      e315dcdf0c2d2ca9bc113a0f41b5631c

    • SHA1

      dac5ece3896c5363815d4ae5d67d0ea4057f6598

    • SHA256

      8ccce028916c95e6a57c78c86c010834653f4723401135afbf49c9a2f62bd1f7

    • SHA512

      443cee5cfaca54aca1975664252aa98bc778fb50bde1f6e0a198071fa1d60b4041848998dd9c17a34628757e3351e93bae1b347e7160c151b9822575650436bb

    • SSDEEP

      3072:1jy+Jc2pW+ycmY9DKbzjvQtfbUgUCD8khVC2gx4ivWC76P5i07pZXGq6UR8Xbf7x:ZJJFmY9s5uHC2OVUnUqq68J

    • Cycbot

      Cycbot is a backdoor and trojan written in C++..

    • Cycbot family

    • Detects Cycbot payload

      Cycbot is a backdoor and trojan written in C++.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks