Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    04126c7ea86c6e4bd4eeb1c1bb76ab20_NeikiAnalytics

  • Size

    386KB

  • Sample

    240510-zwybnscf64

  • MD5

    04126c7ea86c6e4bd4eeb1c1bb76ab20

  • SHA1

    32a03d9db20f3f9882e3ebff7eb312eef0cba6ca

  • SHA256

    787be39de0f4656ebb9786c640468107462e1bae0e7c5e2765d6fa11d0ab0991

  • SHA512

    9401fb71cf37e28e37083bb579f9024171899f8ea729406ea38564571f2057a5c1080d53c3cc8d60102c904de9fbdd1cc15f947dd3c899b2dc8d91838093d519

  • SSDEEP

    6144:n3C9BRIG0asYFm71mPfkVB8dKwaO5CVwthl:n3C9uYA7okVqdKwaO5CVMhl

Malware Config

Targets

    • Target

      04126c7ea86c6e4bd4eeb1c1bb76ab20_NeikiAnalytics

    • Size

      386KB

    • MD5

      04126c7ea86c6e4bd4eeb1c1bb76ab20

    • SHA1

      32a03d9db20f3f9882e3ebff7eb312eef0cba6ca

    • SHA256

      787be39de0f4656ebb9786c640468107462e1bae0e7c5e2765d6fa11d0ab0991

    • SHA512

      9401fb71cf37e28e37083bb579f9024171899f8ea729406ea38564571f2057a5c1080d53c3cc8d60102c904de9fbdd1cc15f947dd3c899b2dc8d91838093d519

    • SSDEEP

      6144:n3C9BRIG0asYFm71mPfkVB8dKwaO5CVwthl:n3C9uYA7okVqdKwaO5CVMhl

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks