Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

JaffaCakes...67.dll

windows7-x64

10

JaffaCakes...67.dll

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_90084242fd519b3a14db407c7ba6fb2db26be500c2ea4f466af8887cd472fb67

  • Size

    626KB

  • Sample

    241221-yt8tysymbl

  • MD5

    f2da170689dde4b9a97c5305503cb3d9

  • SHA1

    89fce97c5194e0498fe9c9cc19a4f7af208aa3f0

  • SHA256

    90084242fd519b3a14db407c7ba6fb2db26be500c2ea4f466af8887cd472fb67

  • SHA512

    061c4ab465a38ff6341f0886e607a15921ac922a17d54e3801c06ddf356cb2a38941e9c7499c59b9fa3332dc18a6576960cd7c050b599e083b8497f9e45c28fe

  • SSDEEP

    12288:QxHGz7jrsxOZWGvw2uV+HZfyWdAHKHRuhtOJbIP5UsT9GdOxRCeg:jtWGvCV+5Qo8hPNT961eg

Score
10/10
gozi5513bankerdiscoveryisfbtrojan

Malware Config

Extracted

Family

gozi

Extracted

Family

gozi

Botnet

5513

C2

greenwoodgrace.website

Attributes
  • base_path

    /manifest/

  • build

    250187

  • dga_season

    10

  • exe_type

    loader

  • extension

    .cnx

  • server_id

    12

rsa_pubkey.plain
1
-----BEGIN PUBLIC KEY-----
2
MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBAOBkY41WtGkEFhAL9QVXVCFkuo5u4nqt
3
Ffl8H3moyDl14SkcNxXFFWmwIE8rTTz4HzgGAo3QHRV8h/f5HdttseUCAwEAAQ==
4
-----END PUBLIC KEY-----
serpent.plain
1
10291029JSJUYNHG

Targets

    • Target

      JaffaCakes118_90084242fd519b3a14db407c7ba6fb2db26be500c2ea4f466af8887cd472fb67

    • Size

      626KB

    • MD5

      f2da170689dde4b9a97c5305503cb3d9

    • SHA1

      89fce97c5194e0498fe9c9cc19a4f7af208aa3f0

    • SHA256

      90084242fd519b3a14db407c7ba6fb2db26be500c2ea4f466af8887cd472fb67

    • SHA512

      061c4ab465a38ff6341f0886e607a15921ac922a17d54e3801c06ddf356cb2a38941e9c7499c59b9fa3332dc18a6576960cd7c050b599e083b8497f9e45c28fe

    • SSDEEP

      12288:QxHGz7jrsxOZWGvw2uV+HZfyWdAHKHRuhtOJbIP5UsT9GdOxRCeg:jtWGvCV+5Qo8hPNT961eg

    Score
    10/10
    gozi5513bankerdiscoveryisfbtrojan
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.