Windows 7 deprecation
Windows 7 will be removed from tria.ge on 2025-03-31
General
-
Target
JaffaCakes118_a6d5cb621e1b5788e3b63881f1c9a7ae
-
Size
168KB
-
Sample
250118-l35gnszngz
-
MD5
a6d5cb621e1b5788e3b63881f1c9a7ae
-
SHA1
1432dd32c1438fd0ef27dd6a4d6300d416010495
-
SHA256
2262245b3a6625161f7ac8183ebb65d0b1e96617ba962c63b28dc256d4c65602
-
SHA512
520a7c6f1736bc2c7f744604eeec96e8c9782ed403ec5c0783a7c20a3d8e502c3102d64841bb031b2237c02f0cda884a3edce3fff7a55b30084d741c50c6e6ea
-
SSDEEP
3072:3z5WHsOQ8adZ2CVgULqn1CxBCHN06Hjo0r7HMkVj9fTsOO/:8MOteIeq1Cx2tjZ7HDj9ZO/
Static task
static1
Behavioral task
behavioral1
Sample
JaffaCakes118_a6d5cb621e1b5788e3b63881f1c9a7ae.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
JaffaCakes118_a6d5cb621e1b5788e3b63881f1c9a7ae.exe
Resource
win10v2004-20241007-en
Malware Config
Targets
-
-
Target
JaffaCakes118_a6d5cb621e1b5788e3b63881f1c9a7ae
-
Size
168KB
-
MD5
a6d5cb621e1b5788e3b63881f1c9a7ae
-
SHA1
1432dd32c1438fd0ef27dd6a4d6300d416010495
-
SHA256
2262245b3a6625161f7ac8183ebb65d0b1e96617ba962c63b28dc256d4c65602
-
SHA512
520a7c6f1736bc2c7f744604eeec96e8c9782ed403ec5c0783a7c20a3d8e502c3102d64841bb031b2237c02f0cda884a3edce3fff7a55b30084d741c50c6e6ea
-
SSDEEP
3072:3z5WHsOQ8adZ2CVgULqn1CxBCHN06Hjo0r7HMkVj9fTsOO/:8MOteIeq1Cx2tjZ7HDj9ZO/
-
Cycbot family
-
Detects Cycbot payload
Cycbot is a backdoor and trojan written in C++.
-
Modifies WinLogon for persistence
-