Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    NEAS.33987ee4bce7c216e137c2d785d41b20.exe

  • Size

    92KB

  • Sample

    231102-h3b9cagg6w

  • MD5

    33987ee4bce7c216e137c2d785d41b20

  • SHA1

    91bfd9228115028ae73ecc9e2ae86fd63a8ba6fb

  • SHA256

    8f7ca4cb002c579919e70ab606ab5bd68048ebd7323ff91b0f7c5d00e887d419

  • SHA512

    2089ddbd31116ba477e7b2f039390a221d0a6fdce0de26daef40a5b2528ee0e757e24f320ab52d19c8fe7e6955b867949f98b68bb131421582df7313697f75e7

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDoLuePjDkxbAS4AOXE2I:ymb3NkkiQ3mdBjFoLucjDkx94AOXEF

Malware Config

Targets

    • Target

      NEAS.33987ee4bce7c216e137c2d785d41b20.exe

    • Size

      92KB

    • MD5

      33987ee4bce7c216e137c2d785d41b20

    • SHA1

      91bfd9228115028ae73ecc9e2ae86fd63a8ba6fb

    • SHA256

      8f7ca4cb002c579919e70ab606ab5bd68048ebd7323ff91b0f7c5d00e887d419

    • SHA512

      2089ddbd31116ba477e7b2f039390a221d0a6fdce0de26daef40a5b2528ee0e757e24f320ab52d19c8fe7e6955b867949f98b68bb131421582df7313697f75e7

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDoLuePjDkxbAS4AOXE2I:ymb3NkkiQ3mdBjFoLucjDkx94AOXEF

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks