Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    NEAS.3d884af8a609f44c21d69b6ee2644120.exe

  • Size

    56KB

  • Sample

    231016-wxnxvacd2s

  • MD5

    3d884af8a609f44c21d69b6ee2644120

  • SHA1

    2211591e425b4671976adac00c3ede828460bedf

  • SHA256

    36f2ae9ffc8ced2e0d4880135b3297ebfc527ed02f6c41b4021a03d6968a14a1

  • SHA512

    af601eb3616fa531f02b3979a28f8e49e858d69df8c83f6ae89691d4d04be1645f800bddbf736346b2a0b4b1e25b1d76ea4ca0723f7f0df6946c72a0929f1697

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIsPwEUv:ymb3NkkiQ3mdBjFIsPvUv

Malware Config

Targets

    • Target

      NEAS.3d884af8a609f44c21d69b6ee2644120.exe

    • Size

      56KB

    • MD5

      3d884af8a609f44c21d69b6ee2644120

    • SHA1

      2211591e425b4671976adac00c3ede828460bedf

    • SHA256

      36f2ae9ffc8ced2e0d4880135b3297ebfc527ed02f6c41b4021a03d6968a14a1

    • SHA512

      af601eb3616fa531f02b3979a28f8e49e858d69df8c83f6ae89691d4d04be1645f800bddbf736346b2a0b4b1e25b1d76ea4ca0723f7f0df6946c72a0929f1697

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIsPwEUv:ymb3NkkiQ3mdBjFIsPvUv

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks