Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    JaffaCakes118_a6d5cb621e1b5788e3b63881f1c9a7ae

  • Size

    168KB

  • Sample

    250118-l35gnszngz

  • MD5

    a6d5cb621e1b5788e3b63881f1c9a7ae

  • SHA1

    1432dd32c1438fd0ef27dd6a4d6300d416010495

  • SHA256

    2262245b3a6625161f7ac8183ebb65d0b1e96617ba962c63b28dc256d4c65602

  • SHA512

    520a7c6f1736bc2c7f744604eeec96e8c9782ed403ec5c0783a7c20a3d8e502c3102d64841bb031b2237c02f0cda884a3edce3fff7a55b30084d741c50c6e6ea

  • SSDEEP

    3072:3z5WHsOQ8adZ2CVgULqn1CxBCHN06Hjo0r7HMkVj9fTsOO/:8MOteIeq1Cx2tjZ7HDj9ZO/

Malware Config

Targets

    • Target

      JaffaCakes118_a6d5cb621e1b5788e3b63881f1c9a7ae

    • Size

      168KB

    • MD5

      a6d5cb621e1b5788e3b63881f1c9a7ae

    • SHA1

      1432dd32c1438fd0ef27dd6a4d6300d416010495

    • SHA256

      2262245b3a6625161f7ac8183ebb65d0b1e96617ba962c63b28dc256d4c65602

    • SHA512

      520a7c6f1736bc2c7f744604eeec96e8c9782ed403ec5c0783a7c20a3d8e502c3102d64841bb031b2237c02f0cda884a3edce3fff7a55b30084d741c50c6e6ea

    • SSDEEP

      3072:3z5WHsOQ8adZ2CVgULqn1CxBCHN06Hjo0r7HMkVj9fTsOO/:8MOteIeq1Cx2tjZ7HDj9ZO/

    • Cycbot

      Cycbot is a backdoor and trojan written in C++..

    • Cycbot family

    • Detects Cycbot payload

      Cycbot is a backdoor and trojan written in C++.

    • Modifies WinLogon for persistence

    • Reads user/profile data of web browsers

      Infostealers often target stored browser data, which can include saved credentials etc.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks