Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Resubmissions

28/03/2024, 18:57

240328-xl8njsdf4s 10

28/03/2024, 18:54

240328-xkp5tade7v 10

General

  • Target

    30b29aeee76428a87d880ca97a330f626d35b9640fab9c0b5e291311d7604fc9

  • Size

    70KB

  • Sample

    240328-xl8njsdf4s

  • MD5

    3f61e232e98fef2ecd373a417e4ced9e

  • SHA1

    a3889a600f362cea47e91a7f3c23b6e908f111a3

  • SHA256

    30b29aeee76428a87d880ca97a330f626d35b9640fab9c0b5e291311d7604fc9

  • SHA512

    4842336a4424b5083c853e64cb1bb9c2ae2579c842da200db34ae1251aead0849c9af60c702781d7df35f0dcecb84c30d501a41fe85021824642cd5adb101b56

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIIpIo60LbB:ymb3NkkiQ3mdBjFIIp9LV

Malware Config

Targets

    • Target

      30b29aeee76428a87d880ca97a330f626d35b9640fab9c0b5e291311d7604fc9

    • Size

      70KB

    • MD5

      3f61e232e98fef2ecd373a417e4ced9e

    • SHA1

      a3889a600f362cea47e91a7f3c23b6e908f111a3

    • SHA256

      30b29aeee76428a87d880ca97a330f626d35b9640fab9c0b5e291311d7604fc9

    • SHA512

      4842336a4424b5083c853e64cb1bb9c2ae2579c842da200db34ae1251aead0849c9af60c702781d7df35f0dcecb84c30d501a41fe85021824642cd5adb101b56

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIIpIo60LbB:ymb3NkkiQ3mdBjFIIp9LV

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks