Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    NEAS.2f5c57179882fda1f5ee460cb04fba10.exe

  • Size

    439KB

  • Sample

    231013-ytdc2shg86

  • MD5

    2f5c57179882fda1f5ee460cb04fba10

  • SHA1

    886e38951c36755e359cbc977a21641b5bc016dd

  • SHA256

    178a25aea6d1f7fa6960c908b686bb0c5489ba260d78c1716765577ee99d2303

  • SHA512

    a6dbcfa1eb33628a8029bd7c55c4c4ffc502aa90b5bd4bd414484a4b5b863ed311555d534e1cf0e4fad580ee4ea8e147ae379ea470bbcba04a105363addba587

  • SSDEEP

    6144:n3C9BRo7tvnJ9Fywhk/T4i37K3BoKg0p5WI09Jw:n3C9ytvn8whkb4i3e3GFO6Jw

Malware Config

Targets

    • Target

      NEAS.2f5c57179882fda1f5ee460cb04fba10.exe

    • Size

      439KB

    • MD5

      2f5c57179882fda1f5ee460cb04fba10

    • SHA1

      886e38951c36755e359cbc977a21641b5bc016dd

    • SHA256

      178a25aea6d1f7fa6960c908b686bb0c5489ba260d78c1716765577ee99d2303

    • SHA512

      a6dbcfa1eb33628a8029bd7c55c4c4ffc502aa90b5bd4bd414484a4b5b863ed311555d534e1cf0e4fad580ee4ea8e147ae379ea470bbcba04a105363addba587

    • SSDEEP

      6144:n3C9BRo7tvnJ9Fywhk/T4i37K3BoKg0p5WI09Jw:n3C9ytvn8whkb4i3e3GFO6Jw

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks