Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    NEAS.b16d58f3279666c49de5ecf7bada5350_JC.exe

  • Size

    87KB

  • Sample

    231031-zvq6zadf9s

  • MD5

    b16d58f3279666c49de5ecf7bada5350

  • SHA1

    70fb5e1befc88c75bba52a8a0949fe086ae11596

  • SHA256

    80bbcfd78ee28e0da6f6599dd4e63f9c614ba71117d4b022cb7116efe01cd46c

  • SHA512

    bcd7ef6b46cc493b3fd661e140f82e74773e0893de94875e4e72801b5bd38f90b9bb346759e2e21a64642b0b603fe477ba2b9851a7ad97bfd7ce30c0cc7a4a44

  • SSDEEP

    1536:hBvQBeOGtrYS3srx93UBWfwC6Ggnouy8bsI6p4t11iApwZvG/wHU:hBhOmTsF93UYfwC6GIoutbsI6pW117w8

Malware Config

Targets

    • Target

      NEAS.b16d58f3279666c49de5ecf7bada5350_JC.exe

    • Size

      87KB

    • MD5

      b16d58f3279666c49de5ecf7bada5350

    • SHA1

      70fb5e1befc88c75bba52a8a0949fe086ae11596

    • SHA256

      80bbcfd78ee28e0da6f6599dd4e63f9c614ba71117d4b022cb7116efe01cd46c

    • SHA512

      bcd7ef6b46cc493b3fd661e140f82e74773e0893de94875e4e72801b5bd38f90b9bb346759e2e21a64642b0b603fe477ba2b9851a7ad97bfd7ce30c0cc7a4a44

    • SSDEEP

      1536:hBvQBeOGtrYS3srx93UBWfwC6Ggnouy8bsI6p4t11iApwZvG/wHU:hBhOmTsF93UYfwC6GIoutbsI6pW117w8

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks