Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    NEAS.50cb5bd540c47270ca67133fcb420b90.exe

  • Size

    84KB

  • Sample

    231116-nz5z5sch2s

  • MD5

    50cb5bd540c47270ca67133fcb420b90

  • SHA1

    7cd4a88ec606144a50939d7e635835f9b6d1d2fb

  • SHA256

    7a15268a1daf3abf1142d06ac0461d554384cc28bc46a62cf647c28366d91f47

  • SHA512

    5f7ddf0a1f7a0a4f1e33efd723a71402b28d42a30b07dc62dad867c8fe083394931ffc948488d602825f6ed0bc0f64aaf05d750ef2ce68b7c7d10ad1ac5e1ce7

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxND+3T4+C2HVmNVLvpkuos+:ymb3NkkiQ3mdBjF+3TU2HVmvvpVoj

Malware Config

Targets

    • Target

      NEAS.50cb5bd540c47270ca67133fcb420b90.exe

    • Size

      84KB

    • MD5

      50cb5bd540c47270ca67133fcb420b90

    • SHA1

      7cd4a88ec606144a50939d7e635835f9b6d1d2fb

    • SHA256

      7a15268a1daf3abf1142d06ac0461d554384cc28bc46a62cf647c28366d91f47

    • SHA512

      5f7ddf0a1f7a0a4f1e33efd723a71402b28d42a30b07dc62dad867c8fe083394931ffc948488d602825f6ed0bc0f64aaf05d750ef2ce68b7c7d10ad1ac5e1ce7

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxND+3T4+C2HVmNVLvpkuos+:ymb3NkkiQ3mdBjF+3TU2HVmvvpVoj

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks