Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    NEAS.5c7db13ecc89d557b7ddb7d56d1246b0_JC.exe

  • Size

    99KB

  • Sample

    231101-yw7dxaed94

  • MD5

    5c7db13ecc89d557b7ddb7d56d1246b0

  • SHA1

    b80298caac2888a712053523e3ee27d98ef7c544

  • SHA256

    6e23697e562bd247eecac975da0aa5736e5c1e8a4d0decddb3f2f4e2b537451c

  • SHA512

    050209ea7243a8b8dd7dfd6716c884dcdd5193cad6de1cc2ff0aadc5625c69c9e1e667d1f9c46094921fabb446be152618ae360baddac6d5c008ec434fb51218

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDo7xCkTsIwtOa2dY36izroQZvc:ymb3NkkiQ3mdBjFo7LAIb+LM+vc

Malware Config

Targets

    • Target

      NEAS.5c7db13ecc89d557b7ddb7d56d1246b0_JC.exe

    • Size

      99KB

    • MD5

      5c7db13ecc89d557b7ddb7d56d1246b0

    • SHA1

      b80298caac2888a712053523e3ee27d98ef7c544

    • SHA256

      6e23697e562bd247eecac975da0aa5736e5c1e8a4d0decddb3f2f4e2b537451c

    • SHA512

      050209ea7243a8b8dd7dfd6716c884dcdd5193cad6de1cc2ff0aadc5625c69c9e1e667d1f9c46094921fabb446be152618ae360baddac6d5c008ec434fb51218

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDo7xCkTsIwtOa2dY36izroQZvc:ymb3NkkiQ3mdBjFo7LAIb+LM+vc

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks