Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    NEAS.245040d9c33da5a3dd4eab8f651d9ef0.exe

  • Size

    113KB

  • Sample

    231102-jvak8abb69

  • MD5

    245040d9c33da5a3dd4eab8f651d9ef0

  • SHA1

    38c7ef043bb156d472dd74823d7334a7fb1e1219

  • SHA256

    ebbdb80ec302867bdae9a2f91024390e49f0a6c6eb344bb76090348d791b2cca

  • SHA512

    01c06569cb386aa635077a5e22d379dbad3bf3dd1f9257cf9113b201b7afe5a57f7c7843a353a1b246589ef5f961336ab83b3c8cbee91939114b4520636a1940

  • SSDEEP

    3072:chOmTsF93UYfwC6GIout5pi8rY9AABa1D1DV6LYok:ccm4FmowdHoS5ddWi1KY9

Malware Config

Targets

    • Target

      NEAS.245040d9c33da5a3dd4eab8f651d9ef0.exe

    • Size

      113KB

    • MD5

      245040d9c33da5a3dd4eab8f651d9ef0

    • SHA1

      38c7ef043bb156d472dd74823d7334a7fb1e1219

    • SHA256

      ebbdb80ec302867bdae9a2f91024390e49f0a6c6eb344bb76090348d791b2cca

    • SHA512

      01c06569cb386aa635077a5e22d379dbad3bf3dd1f9257cf9113b201b7afe5a57f7c7843a353a1b246589ef5f961336ab83b3c8cbee91939114b4520636a1940

    • SSDEEP

      3072:chOmTsF93UYfwC6GIout5pi8rY9AABa1D1DV6LYok:ccm4FmowdHoS5ddWi1KY9

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks