Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    NEAS.4be015d98c3c8dec9eab81ffb4814fe0.exe

  • Size

    347KB

  • Sample

    231016-wysx7aef87

  • MD5

    4be015d98c3c8dec9eab81ffb4814fe0

  • SHA1

    b69bbcff106cfcb51d89d05e0aa1ba496bc4de27

  • SHA256

    c9e83ff948b6da117d2747e040a76d42fc856f72b23076897d69259227842290

  • SHA512

    bfb759d38b7168391214411207ae45ab7b337a3cf87729bd82916513fd7bf9ba854f0bde97bf8a37ed353a97c926e7d2716c8122089a92d01e5462284a7a7fb1

  • SSDEEP

    6144:9cm7ImGddXvJuzyy/SfVFKpU/sien7NuOpo0HmtDKe0wKyKqiOfm8RCfDK4Tr3:/7TcBuGy/Sa+/sie0OpncKe/KFBOfmz/

Malware Config

Targets

    • Target

      NEAS.4be015d98c3c8dec9eab81ffb4814fe0.exe

    • Size

      347KB

    • MD5

      4be015d98c3c8dec9eab81ffb4814fe0

    • SHA1

      b69bbcff106cfcb51d89d05e0aa1ba496bc4de27

    • SHA256

      c9e83ff948b6da117d2747e040a76d42fc856f72b23076897d69259227842290

    • SHA512

      bfb759d38b7168391214411207ae45ab7b337a3cf87729bd82916513fd7bf9ba854f0bde97bf8a37ed353a97c926e7d2716c8122089a92d01e5462284a7a7fb1

    • SSDEEP

      6144:9cm7ImGddXvJuzyy/SfVFKpU/sien7NuOpo0HmtDKe0wKyKqiOfm8RCfDK4Tr3:/7TcBuGy/Sa+/sie0OpncKe/KFBOfmz/

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks