Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    b32243da2822ead3b36bd8bafc7072d0_NEAS

  • Size

    82KB

  • Sample

    240507-rertkadc39

  • MD5

    b32243da2822ead3b36bd8bafc7072d0

  • SHA1

    1a098c8765ea939579f10bb7138b75924adf319f

  • SHA256

    9ee28a5943547a5740f75427b869e4a3bf2888df89b71bbadbbf06d9969ec28b

  • SHA512

    9bca1009d3ba289957c1cfc04f3ec1501cc20f1ad99296c6deb8b1b0694c46492bb89269d8a0c2204fba6dedf907bae93ef6725cc2909b7a3904792e12be02d5

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDInWeNCYGyA2R7JkZPsvg:ymb3NkkiQ3mdBjFIWeFGyA9PJ

Malware Config

Targets

    • Target

      b32243da2822ead3b36bd8bafc7072d0_NEAS

    • Size

      82KB

    • MD5

      b32243da2822ead3b36bd8bafc7072d0

    • SHA1

      1a098c8765ea939579f10bb7138b75924adf319f

    • SHA256

      9ee28a5943547a5740f75427b869e4a3bf2888df89b71bbadbbf06d9969ec28b

    • SHA512

      9bca1009d3ba289957c1cfc04f3ec1501cc20f1ad99296c6deb8b1b0694c46492bb89269d8a0c2204fba6dedf907bae93ef6725cc2909b7a3904792e12be02d5

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDInWeNCYGyA2R7JkZPsvg:ymb3NkkiQ3mdBjFIWeFGyA9PJ

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks