Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    d1b3eb950001496ed4f7a05f5bc2f5b1

  • Size

    246KB

  • Sample

    240409-3g9ypsdd81

  • MD5

    d1b3eb950001496ed4f7a05f5bc2f5b1

  • SHA1

    e2b2793b017e358fb1e5731947c67e35cc5ee52d

  • SHA256

    18a4a95585340aa6c9e7cfd70ac005e87abb1b35b7944112ef33ae37c888ded8

  • SHA512

    6a7e5a1b0f93cb4e71aa61dbd2e463a8e1dd3d43c0bb53a4657a060a57a17e935001edaca6e245030ee11b17df45d1d426b4896e9c51b2ebd777e93e890c30f3

  • SSDEEP

    3072:chOmTsF93UYfwC6GIoutieyhC2lbgGi5yLpcgDE4JBuItR8pTsgZ9WT4iaz+s:ccm4FmowdHoSi9EIBftapTs4WZazp

Malware Config

Targets

    • Target

      d1b3eb950001496ed4f7a05f5bc2f5b1

    • Size

      246KB

    • MD5

      d1b3eb950001496ed4f7a05f5bc2f5b1

    • SHA1

      e2b2793b017e358fb1e5731947c67e35cc5ee52d

    • SHA256

      18a4a95585340aa6c9e7cfd70ac005e87abb1b35b7944112ef33ae37c888ded8

    • SHA512

      6a7e5a1b0f93cb4e71aa61dbd2e463a8e1dd3d43c0bb53a4657a060a57a17e935001edaca6e245030ee11b17df45d1d426b4896e9c51b2ebd777e93e890c30f3

    • SSDEEP

      3072:chOmTsF93UYfwC6GIoutieyhC2lbgGi5yLpcgDE4JBuItR8pTsgZ9WT4iaz+s:ccm4FmowdHoSi9EIBftapTs4WZazp

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks