Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    JaffaCakes118_b3f55f63e4b68efce81d99c4978eb6988a976a9d88d0012351a4e3275417622d

  • Size

    184KB

  • Sample

    241224-cc247ayncr

  • MD5

    7dae85b1094a978772672c13c058e288

  • SHA1

    0c1724ddb86523a6ce731baa6051a612fab81a8a

  • SHA256

    b3f55f63e4b68efce81d99c4978eb6988a976a9d88d0012351a4e3275417622d

  • SHA512

    a134a3f2d73f65d4fdc4e3bc6018dd4268fe8e5f583cec76816879420ae256216620f9733deb3470ae80cc9b0f0dc8b3c346518dffaad54c535b3b18807d12ab

  • SSDEEP

    3072:aiLVj+luuUXoPOK2z1WPRgg5YbW+d0Ojk1bSA5q/eaoQlzoxss7:aiLVCIT4WK2z1W+CUHZj4Skq/eaouoC

Malware Config

Extracted

Family

dridex

Botnet

22202

C2

80.241.218.90:443

103.161.172.109:13786

87.98.128.76:5723

rc4.plain
rc4.plain

Targets

    • Target

      JaffaCakes118_b3f55f63e4b68efce81d99c4978eb6988a976a9d88d0012351a4e3275417622d

    • Size

      184KB

    • MD5

      7dae85b1094a978772672c13c058e288

    • SHA1

      0c1724ddb86523a6ce731baa6051a612fab81a8a

    • SHA256

      b3f55f63e4b68efce81d99c4978eb6988a976a9d88d0012351a4e3275417622d

    • SHA512

      a134a3f2d73f65d4fdc4e3bc6018dd4268fe8e5f583cec76816879420ae256216620f9733deb3470ae80cc9b0f0dc8b3c346518dffaad54c535b3b18807d12ab

    • SSDEEP

      3072:aiLVj+luuUXoPOK2z1WPRgg5YbW+d0Ojk1bSA5q/eaoQlzoxss7:aiLVCIT4WK2z1W+CUHZj4Skq/eaouoC

    • Dridex

      Dridex(known as Bugat/Cridex) is a form of malware that specializes in stealing bank credentials.

    • Dridex family

    • Dridex Loader

      Detects Dridex both x86 and x64 loader in memory.

MITRE ATT&CK Enterprise v15

Tasks