Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    JaffaCakes118_a030ef66f9ef28a688f2c8463748c762

  • Size

    176KB

  • Sample

    250118-fnfl4svjhp

  • MD5

    a030ef66f9ef28a688f2c8463748c762

  • SHA1

    be5461ec3f54e4f386e8cdabb7d3c88e47bb3cc6

  • SHA256

    4b95b03e48c5d1e488d157d9b4c6946ef094a83755518620081cc992f60677a4

  • SHA512

    328258cf2431f9b338e33e0dde0327a44bc4cd9d16c7aceaa6a3a32671d9f08e45ebc0f68ab71b59136c6d148c6f0856e358258e8d99d787bc0c8b1af9c26caa

  • SSDEEP

    3072:7wbqKYJUz2rp2YLb+tye2FZGZu9ZTA44AM3vf6h1kCZEtd2g4Psp2:7wbqKYyK1L/+7EZ9lRDM/ih2yE6gf

Malware Config

Targets

    • Target

      JaffaCakes118_a030ef66f9ef28a688f2c8463748c762

    • Size

      176KB

    • MD5

      a030ef66f9ef28a688f2c8463748c762

    • SHA1

      be5461ec3f54e4f386e8cdabb7d3c88e47bb3cc6

    • SHA256

      4b95b03e48c5d1e488d157d9b4c6946ef094a83755518620081cc992f60677a4

    • SHA512

      328258cf2431f9b338e33e0dde0327a44bc4cd9d16c7aceaa6a3a32671d9f08e45ebc0f68ab71b59136c6d148c6f0856e358258e8d99d787bc0c8b1af9c26caa

    • SSDEEP

      3072:7wbqKYJUz2rp2YLb+tye2FZGZu9ZTA44AM3vf6h1kCZEtd2g4Psp2:7wbqKYyK1L/+7EZ9lRDM/ih2yE6gf

    • Cycbot

      Cycbot is a backdoor and trojan written in C++..

    • Cycbot family

    • Detects Cycbot payload

      Cycbot is a backdoor and trojan written in C++.

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks