Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    NEAS.9730a3a4057d957a8c5ad124f46f4120.exe

  • Size

    87KB

  • Sample

    231013-zbbbeacf4y

  • MD5

    9730a3a4057d957a8c5ad124f46f4120

  • SHA1

    cc3425224fd9db2502bef03fc76e06547cb7d8f5

  • SHA256

    617e0d9d77d1b193ee9119b82f73f6c0da2ea7ec8229b78567f0223e0bfa1aa6

  • SHA512

    c2364d7dfe0f8967b2297d8ee9004fa70174de8df1917dff6475d9f2e11041b4af80aac97392f67a334775f1094a1873b3c3eb734d34e2c3ee35f9e23eedb81b

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDWiekja1br3GGBxfotIChPzBW:ymb3NkkiQ3mdBjFWXkj7afouZ

Malware Config

Targets

    • Target

      NEAS.9730a3a4057d957a8c5ad124f46f4120.exe

    • Size

      87KB

    • MD5

      9730a3a4057d957a8c5ad124f46f4120

    • SHA1

      cc3425224fd9db2502bef03fc76e06547cb7d8f5

    • SHA256

      617e0d9d77d1b193ee9119b82f73f6c0da2ea7ec8229b78567f0223e0bfa1aa6

    • SHA512

      c2364d7dfe0f8967b2297d8ee9004fa70174de8df1917dff6475d9f2e11041b4af80aac97392f67a334775f1094a1873b3c3eb734d34e2c3ee35f9e23eedb81b

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDWiekja1br3GGBxfotIChPzBW:ymb3NkkiQ3mdBjFWXkj7afouZ

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks