Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    NEAS.fbb9eaecb8ccb9456cfb7d028e67fc50.exe

  • Size

    125KB

  • Sample

    231107-ya4e5aee7s

  • MD5

    fbb9eaecb8ccb9456cfb7d028e67fc50

  • SHA1

    34ae6b4ce6df444865f3ef46fbcfccfcea7e5149

  • SHA256

    7bf25e2e305a0f8240cb829580f45943530b4de44d7e26b7924684c73a6620f0

  • SHA512

    236d64b699c2533fe83acf41904883ee36d794ea4a8cb159179513dd5449cccf5e49f695d075ee1dc25f0b4e8eeea800b4bc3e73cb21b384ebbfbf82d7d3634b

  • SSDEEP

    3072:khOmTsF93UYfwC6GIoutpYcvrqrE66kropO6BWlPFH5nZU/Eq:kcm4FmowdHoSphraHcpOFltHJZU/Eq

Malware Config

Targets

    • Target

      NEAS.fbb9eaecb8ccb9456cfb7d028e67fc50.exe

    • Size

      125KB

    • MD5

      fbb9eaecb8ccb9456cfb7d028e67fc50

    • SHA1

      34ae6b4ce6df444865f3ef46fbcfccfcea7e5149

    • SHA256

      7bf25e2e305a0f8240cb829580f45943530b4de44d7e26b7924684c73a6620f0

    • SHA512

      236d64b699c2533fe83acf41904883ee36d794ea4a8cb159179513dd5449cccf5e49f695d075ee1dc25f0b4e8eeea800b4bc3e73cb21b384ebbfbf82d7d3634b

    • SSDEEP

      3072:khOmTsF93UYfwC6GIoutpYcvrqrE66kropO6BWlPFH5nZU/Eq:kcm4FmowdHoSphraHcpOFltHJZU/Eq

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks