Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    ed6a0ff29b30ba7c7af4ed5a9cf348117e4a25785166772daaf6892b6bae5984

  • Size

    3.3MB

  • Sample

    230923-el27naec82

  • MD5

    c9005c1d9a58749375a27ad3682d7127

  • SHA1

    d94ac3d7199738b1e44628093a945e120392043d

  • SHA256

    ed6a0ff29b30ba7c7af4ed5a9cf348117e4a25785166772daaf6892b6bae5984

  • SHA512

    1810ccd6a673e628f8f02fbd477e1a8e03080acd6f652997cfe92f6c877b9fde6bc8f1597807d81d990865793bfea047feddabe9bd3903e1bb6b0f185c4fb540

  • SSDEEP

    98304:YROKh5VU89IrYLtWkdQZ7MVuLtInQKm0qa0V:yh5VHmrq1aZYVuAQKmwO

Malware Config

Targets

    • Target

      ed6a0ff29b30ba7c7af4ed5a9cf348117e4a25785166772daaf6892b6bae5984

    • Size

      3.3MB

    • MD5

      c9005c1d9a58749375a27ad3682d7127

    • SHA1

      d94ac3d7199738b1e44628093a945e120392043d

    • SHA256

      ed6a0ff29b30ba7c7af4ed5a9cf348117e4a25785166772daaf6892b6bae5984

    • SHA512

      1810ccd6a673e628f8f02fbd477e1a8e03080acd6f652997cfe92f6c877b9fde6bc8f1597807d81d990865793bfea047feddabe9bd3903e1bb6b0f185c4fb540

    • SSDEEP

      98304:YROKh5VU89IrYLtWkdQZ7MVuLtInQKm0qa0V:yh5VHmrq1aZYVuAQKmwO

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks