Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    JaffaCakes118_135e2715e6d627efd3afcaf2716721e5

  • Size

    160KB

  • Sample

    250106-g5jwja1lbq

  • MD5

    135e2715e6d627efd3afcaf2716721e5

  • SHA1

    791d76163ae3ca705537f9b30f625339dc381420

  • SHA256

    68468b54523015afce43ba75aa85ca5bca3e847ec75da66f44f6c7df7efbdd0d

  • SHA512

    3e4e26d644f820662a4be067e65d9481629c9ed709f5e0652cba9741479d0c8b8826fe89c623a77c18f128405c09c6db098d97756c61b1e4fded28e881e58b66

  • SSDEEP

    1536:DEY+mFM2HXKZgi0Iksu+XM5/HtAQ9J6xph:AY+4MiIkLZJNAQ9J6v

Malware Config

Targets

    • Target

      JaffaCakes118_135e2715e6d627efd3afcaf2716721e5

    • Size

      160KB

    • MD5

      135e2715e6d627efd3afcaf2716721e5

    • SHA1

      791d76163ae3ca705537f9b30f625339dc381420

    • SHA256

      68468b54523015afce43ba75aa85ca5bca3e847ec75da66f44f6c7df7efbdd0d

    • SHA512

      3e4e26d644f820662a4be067e65d9481629c9ed709f5e0652cba9741479d0c8b8826fe89c623a77c18f128405c09c6db098d97756c61b1e4fded28e881e58b66

    • SSDEEP

      1536:DEY+mFM2HXKZgi0Iksu+XM5/HtAQ9J6xph:AY+4MiIkLZJNAQ9J6v

    • Tinba / TinyBanker

      Banking trojan which uses packet sniffing to steal data.

    • Tinba family

    • Adds Run key to start application

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks