Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    NEAS.050abf0f41468cd311d6ca71a788ae40.exe

  • Size

    72KB

  • Sample

    231115-bzhhmaaa53

  • MD5

    050abf0f41468cd311d6ca71a788ae40

  • SHA1

    8fc7fdd86f6c6d9f52cfe5289d8c1edba6bacd57

  • SHA256

    d3a852ba4dabaa34efe0e9abf220c5b60c90c2d22f1732fc8f3b55c1b715f1bc

  • SHA512

    9f10f395a3a8d7dfc4bb45cdd850ee42f694a0fb4935bd703524bcbf1f40f12b3cefa7b7a419721c88d31fe1abac678a7cc89831dfb19257e16a93d94614d1c5

  • SSDEEP

    1536:kvQBeOGtrYS3srx93UBWfwC6Ggnouy8p5yAXNYl7tSS52nIsrtuLrYFdv:khOmTsF93UYfwC6GIoutpYB7tSS5CtuE

Malware Config

Targets

    • Target

      NEAS.050abf0f41468cd311d6ca71a788ae40.exe

    • Size

      72KB

    • MD5

      050abf0f41468cd311d6ca71a788ae40

    • SHA1

      8fc7fdd86f6c6d9f52cfe5289d8c1edba6bacd57

    • SHA256

      d3a852ba4dabaa34efe0e9abf220c5b60c90c2d22f1732fc8f3b55c1b715f1bc

    • SHA512

      9f10f395a3a8d7dfc4bb45cdd850ee42f694a0fb4935bd703524bcbf1f40f12b3cefa7b7a419721c88d31fe1abac678a7cc89831dfb19257e16a93d94614d1c5

    • SSDEEP

      1536:kvQBeOGtrYS3srx93UBWfwC6Ggnouy8p5yAXNYl7tSS52nIsrtuLrYFdv:khOmTsF93UYfwC6GIoutpYB7tSS5CtuE

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks