Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    cf355c7e12fdce6b75dc77627a3ffc10_exe32.exe

  • Size

    1.2MB

  • Sample

    231015-yg7q5ahb22

  • MD5

    cf355c7e12fdce6b75dc77627a3ffc10

  • SHA1

    366bf932158c06ff7d4a610f6a904f94f201a110

  • SHA256

    91e81126e5e7dea4842a4bb3cf6a226f3ff414098ce75a600a17b4bc5ec18192

  • SHA512

    ab104724063ff827fbfa5e0cb36f6a8ea271616ed9d698ec57d4f3b7c13a4745afd28b93bb2e29d8f7db6d30f50fb5ca9187405360b9e7eeea75fa5ab3f6a18c

  • SSDEEP

    24576:ShPh2kkkkK4kXkkkkkkkkhLX3a20R0v50+YNpsKv2EvZHp3oW/:4bazR0vKLXZl

Malware Config

Targets

    • Target

      cf355c7e12fdce6b75dc77627a3ffc10_exe32.exe

    • Size

      1.2MB

    • MD5

      cf355c7e12fdce6b75dc77627a3ffc10

    • SHA1

      366bf932158c06ff7d4a610f6a904f94f201a110

    • SHA256

      91e81126e5e7dea4842a4bb3cf6a226f3ff414098ce75a600a17b4bc5ec18192

    • SHA512

      ab104724063ff827fbfa5e0cb36f6a8ea271616ed9d698ec57d4f3b7c13a4745afd28b93bb2e29d8f7db6d30f50fb5ca9187405360b9e7eeea75fa5ab3f6a18c

    • SSDEEP

      24576:ShPh2kkkkK4kXkkkkkkkkhLX3a20R0v50+YNpsKv2EvZHp3oW/:4bazR0vKLXZl

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks