Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    NEAS.b845cc66c5ca652ab280edd7a041b560.exe

  • Size

    76KB

  • Sample

    231101-rmcplsgg53

  • MD5

    b845cc66c5ca652ab280edd7a041b560

  • SHA1

    27150df46c32b83780c3cc15994e70a93aee6cc5

  • SHA256

    39a4bbc478a8069d7d848937a6dffb45b3b453257f3f808eb246a5f66420f981

  • SHA512

    668dd1c0ebda666476864e46eb8185c27796d0f7a2065495ab80241e77dcacacae75daf41e658e56b0d6721d8d653c883be33993add8c3c06c1cfca22ead673a

  • SSDEEP

    1536:CvQBeOGtrYS3srx93UBWfwC6Ggnouy8AelS7/7V8:ChOmTsF93UYfwC6GIoutAe07zV8

Malware Config

Targets

    • Target

      NEAS.b845cc66c5ca652ab280edd7a041b560.exe

    • Size

      76KB

    • MD5

      b845cc66c5ca652ab280edd7a041b560

    • SHA1

      27150df46c32b83780c3cc15994e70a93aee6cc5

    • SHA256

      39a4bbc478a8069d7d848937a6dffb45b3b453257f3f808eb246a5f66420f981

    • SHA512

      668dd1c0ebda666476864e46eb8185c27796d0f7a2065495ab80241e77dcacacae75daf41e658e56b0d6721d8d653c883be33993add8c3c06c1cfca22ead673a

    • SSDEEP

      1536:CvQBeOGtrYS3srx93UBWfwC6Ggnouy8AelS7/7V8:ChOmTsF93UYfwC6GIoutAe07zV8

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks