Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    JaffaCakes118_9e5a18b5e18c283ae49451bc8169bc19

  • Size

    179KB

  • Sample

    250118-d1ejgaskck

  • MD5

    9e5a18b5e18c283ae49451bc8169bc19

  • SHA1

    51a615c40cc1107faa1fc3a908a8a13e248e7248

  • SHA256

    1af2ea886f324dcba515df77f70e2a46d567315f17e14bccd40f7372e4de4b50

  • SHA512

    c7fda261518c1a1010db513ccb6c1b98d78e12ae8ea2fcfcc153999a53aee8c2585481335929ede33e905902a68666cad7ce686c59e414ae1528d7bcb4d10eaa

  • SSDEEP

    3072:0zZPWZbFjm6s7W65dJd5joxFyjdStbD6qBx39w:0zlWDjmBnjd1QFezqr9

Malware Config

Targets

    • Target

      JaffaCakes118_9e5a18b5e18c283ae49451bc8169bc19

    • Size

      179KB

    • MD5

      9e5a18b5e18c283ae49451bc8169bc19

    • SHA1

      51a615c40cc1107faa1fc3a908a8a13e248e7248

    • SHA256

      1af2ea886f324dcba515df77f70e2a46d567315f17e14bccd40f7372e4de4b50

    • SHA512

      c7fda261518c1a1010db513ccb6c1b98d78e12ae8ea2fcfcc153999a53aee8c2585481335929ede33e905902a68666cad7ce686c59e414ae1528d7bcb4d10eaa

    • SSDEEP

      3072:0zZPWZbFjm6s7W65dJd5joxFyjdStbD6qBx39w:0zlWDjmBnjd1QFezqr9

    • Cycbot

      Cycbot is a backdoor and trojan written in C++..

    • Cycbot family

    • Detects Cycbot payload

      Cycbot is a backdoor and trojan written in C++.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks