Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    f45623acbabbf29e34ad8fab16e4d3a0_exe32.exe

  • Size

    182KB

  • Sample

    231015-ykf3ksgg5v

  • MD5

    f45623acbabbf29e34ad8fab16e4d3a0

  • SHA1

    2e7af3874d4ebcbbf448cca3825fce050db7c7d1

  • SHA256

    d0d8132c69781a69cb370143c763ae2731d82e8658d8b1d58f9ecceb5a416db2

  • SHA512

    4f52a110e9256db85e3308e8e4d01fd358455a2dfb63b5116cec0fcdf536ff79fd20725634b698d0d87beeb45c27c1af133fd2de8e92cfdd3fe746c24565184e

  • SSDEEP

    3072:8hOmTsF93UYfwC6GIoutKHrpi8rY9AABa1U+a8+9JwHJqw2QvGlzFLIQ//OPpZqd:8cm4FmowdHoS8rddWX+a/rkJqw2QvGJ5

Malware Config

Targets

    • Target

      f45623acbabbf29e34ad8fab16e4d3a0_exe32.exe

    • Size

      182KB

    • MD5

      f45623acbabbf29e34ad8fab16e4d3a0

    • SHA1

      2e7af3874d4ebcbbf448cca3825fce050db7c7d1

    • SHA256

      d0d8132c69781a69cb370143c763ae2731d82e8658d8b1d58f9ecceb5a416db2

    • SHA512

      4f52a110e9256db85e3308e8e4d01fd358455a2dfb63b5116cec0fcdf536ff79fd20725634b698d0d87beeb45c27c1af133fd2de8e92cfdd3fe746c24565184e

    • SSDEEP

      3072:8hOmTsF93UYfwC6GIoutKHrpi8rY9AABa1U+a8+9JwHJqw2QvGlzFLIQ//OPpZqd:8cm4FmowdHoS8rddWX+a/rkJqw2QvGJ5

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks