Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    fffc13319dd6901f90d519251f708420_exe32.exe

  • Size

    187KB

  • Sample

    231015-yk45eahc3x

  • MD5

    fffc13319dd6901f90d519251f708420

  • SHA1

    b74624aa419799922e1d5cbe8dbc3e11300646ce

  • SHA256

    10ba9b5932e77a356be93acead8b632af0d7c0f9f2589bbaacd30f74b01aa906

  • SHA512

    8ccc7aebe0b38ca7211b8d5a5b5fa6f503c01112c4177e5d9adf26c521c6c98ad6762e159429c4471893d7360fff6072e2157e08d40f794461ce07bc78514c18

  • SSDEEP

    1536:PvQBeOGtrYSSsrc93UBIfdC67m6AJiqgT4+IJPvm3:PhOm2sI93UufdC67ciJTm50

Malware Config

Targets

    • Target

      fffc13319dd6901f90d519251f708420_exe32.exe

    • Size

      187KB

    • MD5

      fffc13319dd6901f90d519251f708420

    • SHA1

      b74624aa419799922e1d5cbe8dbc3e11300646ce

    • SHA256

      10ba9b5932e77a356be93acead8b632af0d7c0f9f2589bbaacd30f74b01aa906

    • SHA512

      8ccc7aebe0b38ca7211b8d5a5b5fa6f503c01112c4177e5d9adf26c521c6c98ad6762e159429c4471893d7360fff6072e2157e08d40f794461ce07bc78514c18

    • SSDEEP

      1536:PvQBeOGtrYSSsrc93UBIfdC67m6AJiqgT4+IJPvm3:PhOm2sI93UufdC67ciJTm50

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks