Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    50b315657669f9157fe06128b14de78c4240982ec75dd908cc864ec1d15850c3

  • Size

    10.9MB

  • Sample

    231023-kmfypsfb7x

  • MD5

    4d6d0398b9a770be699aa7c27d726f16

  • SHA1

    e1bf65e99387d4537ed78f081332f54df30f32e4

  • SHA256

    50b315657669f9157fe06128b14de78c4240982ec75dd908cc864ec1d15850c3

  • SHA512

    c48faccd2a4ae68421275afce84f6d1aa241ac8fcef36deb061a50c7aa1d7900a7c1c5388220e5b2d73ad453761de5be5e78f5bd80b4c4bf917cca4f1c0cffe2

  • SSDEEP

    196608:oDuVQYymGTH1Jw5oHCgXV/EOC3iw7+arCFT7t0K7l5eBf:HQYymGTH1Jw9gNaPkTeVB

Malware Config

Targets

    • Target

      50b315657669f9157fe06128b14de78c4240982ec75dd908cc864ec1d15850c3

    • Size

      10.9MB

    • MD5

      4d6d0398b9a770be699aa7c27d726f16

    • SHA1

      e1bf65e99387d4537ed78f081332f54df30f32e4

    • SHA256

      50b315657669f9157fe06128b14de78c4240982ec75dd908cc864ec1d15850c3

    • SHA512

      c48faccd2a4ae68421275afce84f6d1aa241ac8fcef36deb061a50c7aa1d7900a7c1c5388220e5b2d73ad453761de5be5e78f5bd80b4c4bf917cca4f1c0cffe2

    • SSDEEP

      196608:oDuVQYymGTH1Jw5oHCgXV/EOC3iw7+arCFT7t0K7l5eBf:HQYymGTH1Jw9gNaPkTeVB

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks