Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    e73fbfa78b18ee5d50d7ec84814b8c50_NeikiAnalytics

  • Size

    164KB

  • Sample

    240510-p6j7paah94

  • MD5

    e73fbfa78b18ee5d50d7ec84814b8c50

  • SHA1

    fc041e578425a06161fd018861c595627fe3f09f

  • SHA256

    e5ff830526b266bc7d4879e3c9e0577c5917f623d38792bbf79830503f5d31d5

  • SHA512

    8889ef62c5365d6ba880ce7a24a0dd6a36c59836dec314244197e4fffe4fd16e5949cafbe1b65efa251661b0f5496ec9272c9538294596fab9ce83f425b5915c

  • SSDEEP

    3072:khOmTsF93UYfwC6GIoutpYcvrqrE66kropO6BWlPFH4t6NDWOH148BH15v4:kcm4FmowdHoSphraHcpOFltH4ttj8BH0

Malware Config

Targets

    • Target

      e73fbfa78b18ee5d50d7ec84814b8c50_NeikiAnalytics

    • Size

      164KB

    • MD5

      e73fbfa78b18ee5d50d7ec84814b8c50

    • SHA1

      fc041e578425a06161fd018861c595627fe3f09f

    • SHA256

      e5ff830526b266bc7d4879e3c9e0577c5917f623d38792bbf79830503f5d31d5

    • SHA512

      8889ef62c5365d6ba880ce7a24a0dd6a36c59836dec314244197e4fffe4fd16e5949cafbe1b65efa251661b0f5496ec9272c9538294596fab9ce83f425b5915c

    • SSDEEP

      3072:khOmTsF93UYfwC6GIoutpYcvrqrE66kropO6BWlPFH4t6NDWOH148BH15v4:kcm4FmowdHoSphraHcpOFltH4ttj8BH0

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks