Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    e893c529965161d1b0311e932df85b848c8ad59ba099f4371a6b25204ef863ef

  • Size

    177KB

  • Sample

    221011-rzedzaaaf5

  • MD5

    0813291c82e78cbfce97ed2edd8ef6d0

  • SHA1

    22e25ff99a9a13336c6f1954f88738450d5a1915

  • SHA256

    e893c529965161d1b0311e932df85b848c8ad59ba099f4371a6b25204ef863ef

  • SHA512

    6e9f909ca749c7792b3e50a9cf72f3cf8ef2ebbe789327e4f9a84ebd587e81f905c7bd35193f3909b1edceb8d4c97c6cf7e6ccbea5412f0b1f1c3acb396869b1

  • SSDEEP

    3072:PDrcxYp9wMwF9JSuLdudWBBqJudmfT1dcqWZIqopGyZitKZ3sYJKtgLjOeQ:PDYxauMy9JrLdPBqYAhd7WZIq1yZiYsK

Malware Config

Targets

    • Target

      e893c529965161d1b0311e932df85b848c8ad59ba099f4371a6b25204ef863ef

    • Size

      177KB

    • MD5

      0813291c82e78cbfce97ed2edd8ef6d0

    • SHA1

      22e25ff99a9a13336c6f1954f88738450d5a1915

    • SHA256

      e893c529965161d1b0311e932df85b848c8ad59ba099f4371a6b25204ef863ef

    • SHA512

      6e9f909ca749c7792b3e50a9cf72f3cf8ef2ebbe789327e4f9a84ebd587e81f905c7bd35193f3909b1edceb8d4c97c6cf7e6ccbea5412f0b1f1c3acb396869b1

    • SSDEEP

      3072:PDrcxYp9wMwF9JSuLdudWBBqJudmfT1dcqWZIqopGyZitKZ3sYJKtgLjOeQ:PDYxauMy9JrLdPBqYAhd7WZIq1yZiYsK

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Adds Run key to start application

MITRE ATT&CK Enterprise v6

Tasks