Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    15007bca6d2449388e9898c1626216d0_NeikiAnalytics

  • Size

    87KB

  • Sample

    240509-mrl2maga74

  • MD5

    15007bca6d2449388e9898c1626216d0

  • SHA1

    9dbce738c331433febbccb80e045ec0dbd158657

  • SHA256

    2a212aff3225e17884ead79dc2236a9d3fe510b91dcfb1e93f9625b6a94602f0

  • SHA512

    f83dd73e9e646d9e689e7a22a008796ea18bca4eba70cf8156401b1c7261739c56b41d0370423d13384d4bd5415633f652dc4a9c8ee949fad1e1e63ef48f62a9

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDo73yqKH/KjveD:ymb3NkkiQ3mdBjFo73yX+vQ

Malware Config

Targets

    • Target

      15007bca6d2449388e9898c1626216d0_NeikiAnalytics

    • Size

      87KB

    • MD5

      15007bca6d2449388e9898c1626216d0

    • SHA1

      9dbce738c331433febbccb80e045ec0dbd158657

    • SHA256

      2a212aff3225e17884ead79dc2236a9d3fe510b91dcfb1e93f9625b6a94602f0

    • SHA512

      f83dd73e9e646d9e689e7a22a008796ea18bca4eba70cf8156401b1c7261739c56b41d0370423d13384d4bd5415633f652dc4a9c8ee949fad1e1e63ef48f62a9

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDo73yqKH/KjveD:ymb3NkkiQ3mdBjFo73yX+vQ

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks