Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    JaffaCakes118_79c26468bdd7049e1a48ba91bce967a6

  • Size

    196KB

  • Sample

    250116-r9gbbavqhx

  • MD5

    79c26468bdd7049e1a48ba91bce967a6

  • SHA1

    109fdc157699650f8be16f95d881f98bbbb40884

  • SHA256

    15548c8a0f5be8a06706c25d10f201dd7912dc8d882a7e637daa414fb3baddba

  • SHA512

    0de84059c273d5a2da1aab811d8c0068abd269a46602289ef49260572b2fd2849ce75ea3c240d4606d2c62bf303bee5ce5acf5d4477201e3c644ef7926756d89

  • SSDEEP

    3072:B3WZrM3EB6wj/iesfXb17Nxiva4cAHEHiPZqX9y638G+kGP6Ozweq94t:B3f0d/EfLXkvazARxqX9h329zwo

Malware Config

Targets

    • Target

      JaffaCakes118_79c26468bdd7049e1a48ba91bce967a6

    • Size

      196KB

    • MD5

      79c26468bdd7049e1a48ba91bce967a6

    • SHA1

      109fdc157699650f8be16f95d881f98bbbb40884

    • SHA256

      15548c8a0f5be8a06706c25d10f201dd7912dc8d882a7e637daa414fb3baddba

    • SHA512

      0de84059c273d5a2da1aab811d8c0068abd269a46602289ef49260572b2fd2849ce75ea3c240d4606d2c62bf303bee5ce5acf5d4477201e3c644ef7926756d89

    • SSDEEP

      3072:B3WZrM3EB6wj/iesfXb17Nxiva4cAHEHiPZqX9y638G+kGP6Ozweq94t:B3f0d/EfLXkvazARxqX9h329zwo

    • Cycbot

      Cycbot is a backdoor and trojan written in C++..

    • Cycbot family

    • Detects Cycbot payload

      Cycbot is a backdoor and trojan written in C++.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks