Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

JaffaCakes...71.exe

windows7-x64

10

JaffaCakes...71.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_00cd7c9a8cec842e50d94d794e2aa3ae055a565f286341608c334d31c2f57c71

  • Size

    436KB

  • Sample

    241226-vb6ebs1nhn

  • MD5

    6fc06103caf459703be99a063f27ad2f

  • SHA1

    d289059db54e9d877e9eb32911eb987c16201f16

  • SHA256

    00cd7c9a8cec842e50d94d794e2aa3ae055a565f286341608c334d31c2f57c71

  • SHA512

    26bb2951daa7737280019024bd511d998caa4dfe75428ac35eb3b330ef2a005319fec547bf462bf14d41e28efd09bc816594c3f6a46ff0b26ad7833fa40a690a

  • SSDEEP

    6144:pkVJ67JhvuoodbJhMZnctQTFE4QbXU9CkDotFMcMNBlNtEKLtc:pkVJIDvZGlOFfQbXU9s79MNBjKotc

Score
10/10
trickbottot157bankerdiscoverytrojan

Malware Config

Extracted

Family

trickbot

Version

2000033

Botnet

tot157

C2

179.42.137.102:443

191.36.152.198:443

179.42.137.104:443

179.42.137.106:443

179.42.137.108:443

202.183.12.124:443

194.190.18.122:443

103.56.207.230:443

171.103.187.218:449

171.103.189.118:449

18.139.111.104:443

179.42.137.105:443

186.4.193.75:443

171.101.229.2:449

179.42.137.107:443

103.56.43.209:449

179.42.137.110:443

45.181.207.156:443

197.44.54.162:449

179.42.137.109:443
Attributes
  • autorun
    Name:pwgrabb
    Name:pwgrabc
ecc_pubkey.base64
1
RUNTMzAAAAAL/ZqmMPBLaRfg1hPOtFJrZz2Zi2/EC4B3fiX8VnaOUVKndBr+jEqWc7mw4v3ADTiwp64K5QKe1LZ27jUZxL4bWjxARPo85hv72nuedeZhRQ+adQQ/gIsV869MycRzghc=

Targets

    • Target

      JaffaCakes118_00cd7c9a8cec842e50d94d794e2aa3ae055a565f286341608c334d31c2f57c71

    • Size

      436KB

    • MD5

      6fc06103caf459703be99a063f27ad2f

    • SHA1

      d289059db54e9d877e9eb32911eb987c16201f16

    • SHA256

      00cd7c9a8cec842e50d94d794e2aa3ae055a565f286341608c334d31c2f57c71

    • SHA512

      26bb2951daa7737280019024bd511d998caa4dfe75428ac35eb3b330ef2a005319fec547bf462bf14d41e28efd09bc816594c3f6a46ff0b26ad7833fa40a690a

    • SSDEEP

      6144:pkVJ67JhvuoodbJhMZnctQTFE4QbXU9CkDotFMcMNBlNtEKLtc:pkVJIDvZGlOFfQbXU9s79MNBjKotc

    Score
    10/10
    trickbottot157bankerdiscoverytrojan
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.