Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    3a5de6255ae960ed29c14c0924ca87f0_NEAS

  • Size

    94KB

  • Sample

    240507-l9nshaed46

  • MD5

    3a5de6255ae960ed29c14c0924ca87f0

  • SHA1

    9392d956da003dc060ac29d8012c52720098f348

  • SHA256

    b51227b96f5473e837eed4127e5a90a5c396d8866d876db50a89761928e6fe27

  • SHA512

    c947785c7f4a8d9f0064acf896b4c9752349fc0578ed8442d5300fdaf45e01062a2e8401a60d797d4c8e2f4e3d09bc86782ad2aee3cf94443e400c73fdad5434

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDInWeNCYGyA2R7JxJAg8dtc:ymb3NkkiQ3mdBjFIWeFGyAsJAg2c

Malware Config

Targets

    • Target

      3a5de6255ae960ed29c14c0924ca87f0_NEAS

    • Size

      94KB

    • MD5

      3a5de6255ae960ed29c14c0924ca87f0

    • SHA1

      9392d956da003dc060ac29d8012c52720098f348

    • SHA256

      b51227b96f5473e837eed4127e5a90a5c396d8866d876db50a89761928e6fe27

    • SHA512

      c947785c7f4a8d9f0064acf896b4c9752349fc0578ed8442d5300fdaf45e01062a2e8401a60d797d4c8e2f4e3d09bc86782ad2aee3cf94443e400c73fdad5434

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDInWeNCYGyA2R7JxJAg8dtc:ymb3NkkiQ3mdBjFIWeFGyAsJAg2c

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks