Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    NEAS.b46e842e35cf209e1cd1990ea1becbf0.exe

  • Size

    93KB

  • Sample

    231115-kyf3vagf5y

  • MD5

    b46e842e35cf209e1cd1990ea1becbf0

  • SHA1

    8a87f0ce728b1ebb47fb96ae6b430db88076b3ab

  • SHA256

    f4672da0c3d5e5d2c0569e78fc728b9f2a2cdd4afcf81f79f3db0be748704fce

  • SHA512

    7cd0cb8a1f0ce1b6365b3202bdd4ffc85393f727d5634dd8f8f7d6e0205e096b7cfe4ada2dd6cdceaf4a421c038bdd627c85ff009a13e77dae1cff62c7c76d5b

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDo73t6MlYqn+jMp9IHKqkHpnXgS:ymb3NkkiQ3mdBjFo73tvn+Yp9FrHP

Malware Config

Targets

    • Target

      NEAS.b46e842e35cf209e1cd1990ea1becbf0.exe

    • Size

      93KB

    • MD5

      b46e842e35cf209e1cd1990ea1becbf0

    • SHA1

      8a87f0ce728b1ebb47fb96ae6b430db88076b3ab

    • SHA256

      f4672da0c3d5e5d2c0569e78fc728b9f2a2cdd4afcf81f79f3db0be748704fce

    • SHA512

      7cd0cb8a1f0ce1b6365b3202bdd4ffc85393f727d5634dd8f8f7d6e0205e096b7cfe4ada2dd6cdceaf4a421c038bdd627c85ff009a13e77dae1cff62c7c76d5b

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDo73t6MlYqn+jMp9IHKqkHpnXgS:ymb3NkkiQ3mdBjFo73tvn+Yp9FrHP

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks