Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    NEAS.b700606a9a8909a9a5707ee86a66bdf0_JC.exe

  • Size

    71KB

  • Sample

    231101-2v9z7afg63

  • MD5

    b700606a9a8909a9a5707ee86a66bdf0

  • SHA1

    253d3eb9eed34a42fadb35ec5672c083ba5447da

  • SHA256

    62eb024cd559216149b48c450a6eb9425ff0f43e7cd66ed795d3189415ecab3c

  • SHA512

    dce4e5437bd9d6882f7e070c1047669e9d4a9c0b813160f1f76d95c8c8e3d254877d052955b19ba372ca59d6be44679860bc92ba1cf04d4775e91d263ec5beca

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIugEuUm1I6:ymb3NkkiQ3mdBjFIugENm1I6

Malware Config

Targets

    • Target

      NEAS.b700606a9a8909a9a5707ee86a66bdf0_JC.exe

    • Size

      71KB

    • MD5

      b700606a9a8909a9a5707ee86a66bdf0

    • SHA1

      253d3eb9eed34a42fadb35ec5672c083ba5447da

    • SHA256

      62eb024cd559216149b48c450a6eb9425ff0f43e7cd66ed795d3189415ecab3c

    • SHA512

      dce4e5437bd9d6882f7e070c1047669e9d4a9c0b813160f1f76d95c8c8e3d254877d052955b19ba372ca59d6be44679860bc92ba1cf04d4775e91d263ec5beca

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIugEuUm1I6:ymb3NkkiQ3mdBjFIugENm1I6

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks