Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    4471c96884412ae4ec431eca77f17996ad6206023b103dd22756248a95eea265

  • Size

    3.0MB

  • Sample

    231011-lpjytage44

  • MD5

    1f0f1955ef9324fc926e95bbd43d3348

  • SHA1

    58bc4c20001b42ac306ceb1f94abc66fd6d48f6a

  • SHA256

    4471c96884412ae4ec431eca77f17996ad6206023b103dd22756248a95eea265

  • SHA512

    1322e4b91080bd1cb8c500446d492d403e6a3cc6baa786b691f24b6c1b3c2268cb496e7c51d1ed02f3288446ab84c37665b8b2621c54f967f3038bb9088b35da

  • SSDEEP

    24576:aa9/7Mxuu8rjk4aKy4OTU+Vwt5CnLv+NmwqaGyBD+rpihOqOcpoFsTSHy+hE1TuO:a9uu8FaKFinaKCYHysz53wJWqb2Ns

Malware Config

Targets

    • Target

      4471c96884412ae4ec431eca77f17996ad6206023b103dd22756248a95eea265

    • Size

      3.0MB

    • MD5

      1f0f1955ef9324fc926e95bbd43d3348

    • SHA1

      58bc4c20001b42ac306ceb1f94abc66fd6d48f6a

    • SHA256

      4471c96884412ae4ec431eca77f17996ad6206023b103dd22756248a95eea265

    • SHA512

      1322e4b91080bd1cb8c500446d492d403e6a3cc6baa786b691f24b6c1b3c2268cb496e7c51d1ed02f3288446ab84c37665b8b2621c54f967f3038bb9088b35da

    • SSDEEP

      24576:aa9/7Mxuu8rjk4aKy4OTU+Vwt5CnLv+NmwqaGyBD+rpihOqOcpoFsTSHy+hE1TuO:a9uu8FaKFinaKCYHysz53wJWqb2Ns

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Drops file in System32 directory

MITRE ATT&CK Matrix

Tasks