Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

10

JaffaCakes...83.exe

windows7-x64

1

JaffaCakes...83.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_cf327d6a5937d13337a674221cdc0d8bd7eadb425f465a056aeeeee9c9409c83

  • Size

    188KB

  • Sample

    241222-jsas7szqan

  • MD5

    4b63556cbec8694c87098b450b5c7b77

  • SHA1

    ff3b4f7ed0895d7e2c5e2cb24c76095e492be820

  • SHA256

    cf327d6a5937d13337a674221cdc0d8bd7eadb425f465a056aeeeee9c9409c83

  • SHA512

    40e9a8bcecfc247852581152c7e425d06563d82661cd47806d98630e9a94c336a4aeb1fc9a383ecc83be724087b6c0dd3ae96506407d8245477905c03be1fe65

  • SSDEEP

    3072:D6T75sk1JkPns93bcRAHqv3/Muy1QMvVYvgRpGj7jgSpefAlv:+5rrxbwEqv3/JMddpqifAl

Score
10/10
formbookg9s4discoveryrat

Malware Config

Extracted

Family

formbook

Version

4.1

Campaign

g9s4

Decoy

visitmechanic.com

xn--kck4a7gpd474vx6i.com

prozdorovie.online

omatpupa.xyz

zamokwakhekhumalo.com

mayuraandchris.com

wanasahstore.com

bicicletas.win

yhdm61.com

mortgageattract.com

centuryofbio.com

xtdkgjt.com

nhahangnetnghe.com

whatsappsemcontato.com

onlinemarketing-teamwebus.com

zuevu.com

dancaronmusic.com

tingseo.com

uniflapline.com

setuppharmaweb.online

Targets

    • Target

      JaffaCakes118_cf327d6a5937d13337a674221cdc0d8bd7eadb425f465a056aeeeee9c9409c83

    • Size

      188KB

    • MD5

      4b63556cbec8694c87098b450b5c7b77

    • SHA1

      ff3b4f7ed0895d7e2c5e2cb24c76095e492be820

    • SHA256

      cf327d6a5937d13337a674221cdc0d8bd7eadb425f465a056aeeeee9c9409c83

    • SHA512

      40e9a8bcecfc247852581152c7e425d06563d82661cd47806d98630e9a94c336a4aeb1fc9a383ecc83be724087b6c0dd3ae96506407d8245477905c03be1fe65

    • SSDEEP

      3072:D6T75sk1JkPns93bcRAHqv3/Muy1QMvVYvgRpGj7jgSpefAlv:+5rrxbwEqv3/JMddpqifAl

    Score
    3/10
    discovery
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks