Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    NEAS.f335bcc2694d826a63fd88b5af573170.exe

  • Size

    77KB

  • Sample

    231101-rqtgjahe2s

  • MD5

    f335bcc2694d826a63fd88b5af573170

  • SHA1

    4cb26da37d6e926f620c8368d356baafc32607b2

  • SHA256

    7016852687b2ef48d67e631c18daa0547eab3ab297b07a67ce767a7b6856046f

  • SHA512

    4b8ce952e59946a93d9530f558c6c42c7d9dd29b63281b369655fd1aef52c80f7866afe7788e01cc1786f17edbefbe74fd878455bf8092200de55277bd492764

  • SSDEEP

    1536:/vQBeOGtrYS3srx93UBWfwC6Ggnouy8jb5D1AvX3DaZRi:/hOmTsF93UYfwC6GIoutSXTaZ8

Malware Config

Targets

    • Target

      NEAS.f335bcc2694d826a63fd88b5af573170.exe

    • Size

      77KB

    • MD5

      f335bcc2694d826a63fd88b5af573170

    • SHA1

      4cb26da37d6e926f620c8368d356baafc32607b2

    • SHA256

      7016852687b2ef48d67e631c18daa0547eab3ab297b07a67ce767a7b6856046f

    • SHA512

      4b8ce952e59946a93d9530f558c6c42c7d9dd29b63281b369655fd1aef52c80f7866afe7788e01cc1786f17edbefbe74fd878455bf8092200de55277bd492764

    • SSDEEP

      1536:/vQBeOGtrYS3srx93UBWfwC6Ggnouy8jb5D1AvX3DaZRi:/hOmTsF93UYfwC6GIoutSXTaZ8

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks