Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    NEAS.3c84a4fcd4148f2cfdfbcb3614357140.exe

  • Size

    87KB

  • Sample

    231013-yze4tsae78

  • MD5

    3c84a4fcd4148f2cfdfbcb3614357140

  • SHA1

    585d087285df22cbb764eae0e6761ca3e106eb4e

  • SHA256

    53785db5db3119d4cb8465b4b99092af0986256daebddf9f8b5267dba23f3cf9

  • SHA512

    af0e7b96cd57ad6db6b10bc339bd7564a8a99dd0e77d1e54cc2c442897d81936e6270cff7328aab7020e096243ddbf36c0df0bbea74080b3b71deee9ca9db31b

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDWiekja1br3GGBxfotIChPzB8:ymb3NkkiQ3mdBjFWXkj7afou9

Malware Config

Targets

    • Target

      NEAS.3c84a4fcd4148f2cfdfbcb3614357140.exe

    • Size

      87KB

    • MD5

      3c84a4fcd4148f2cfdfbcb3614357140

    • SHA1

      585d087285df22cbb764eae0e6761ca3e106eb4e

    • SHA256

      53785db5db3119d4cb8465b4b99092af0986256daebddf9f8b5267dba23f3cf9

    • SHA512

      af0e7b96cd57ad6db6b10bc339bd7564a8a99dd0e77d1e54cc2c442897d81936e6270cff7328aab7020e096243ddbf36c0df0bbea74080b3b71deee9ca9db31b

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDWiekja1br3GGBxfotIChPzB8:ymb3NkkiQ3mdBjFWXkj7afou9

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks