Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    ae5d6cf11531f779d3b4d5c191ee751b5d89e6d832dbecc733ef64cb2af0b04d

  • Size

    1.7MB

  • Sample

    231124-p99azsbb59

  • MD5

    6080e9547f8af7cabd9fa3196876e1f7

  • SHA1

    9a56418b0235be258deeda73898f9e24272df8e0

  • SHA256

    ae5d6cf11531f779d3b4d5c191ee751b5d89e6d832dbecc733ef64cb2af0b04d

  • SHA512

    7bfa3a4062673f02566e77509c0809d70cb7183612b92a6f82b5f145557baeb15f90eb2916f3c58daff1199a0781b9a01a08401c6247b9d1881cedeb6af48528

  • SSDEEP

    24576:QksPIUC2bdAjAQrJlbie+NAbB0DKj2pE2FhgzPow09mo7TnB5XwEDsj6GKL:BUdQKuN0ekEkg7owBI/wEM6GM

Score
10/10

Malware Config

Targets

    • Target

      ae5d6cf11531f779d3b4d5c191ee751b5d89e6d832dbecc733ef64cb2af0b04d

    • Size

      1.7MB

    • MD5

      6080e9547f8af7cabd9fa3196876e1f7

    • SHA1

      9a56418b0235be258deeda73898f9e24272df8e0

    • SHA256

      ae5d6cf11531f779d3b4d5c191ee751b5d89e6d832dbecc733ef64cb2af0b04d

    • SHA512

      7bfa3a4062673f02566e77509c0809d70cb7183612b92a6f82b5f145557baeb15f90eb2916f3c58daff1199a0781b9a01a08401c6247b9d1881cedeb6af48528

    • SSDEEP

      24576:QksPIUC2bdAjAQrJlbie+NAbB0DKj2pE2FhgzPow09mo7TnB5XwEDsj6GKL:BUdQKuN0ekEkg7owBI/wEM6GM

    Score
    10/10
    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Enterprise v15

Tasks