Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    3cd22027ffacbd5314c1cfc65c654930_NeikiAnalytics

  • Size

    79KB

  • Sample

    240511-1ed25sab6t

  • MD5

    3cd22027ffacbd5314c1cfc65c654930

  • SHA1

    fc165859ee79d09e83d4e9a98b294e5048da7c80

  • SHA256

    ec65aea2d1c57d693cc39b9658f44fa3e507f5099ce2d7a5ae63aa8648707ca8

  • SHA512

    c288659a13c57065a62cab294740f715aaae9aa7c5ee6edd74dc7d3cd48b67889484d36a4f138e867adedb22f27a1c189c02692f5fd25eed74a7588ac6e055b8

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDWiekja1br3GGBxfot3e2ke:ymb3NkkiQ3mdBjFWXkj7afoI2r

Malware Config

Targets

    • Target

      3cd22027ffacbd5314c1cfc65c654930_NeikiAnalytics

    • Size

      79KB

    • MD5

      3cd22027ffacbd5314c1cfc65c654930

    • SHA1

      fc165859ee79d09e83d4e9a98b294e5048da7c80

    • SHA256

      ec65aea2d1c57d693cc39b9658f44fa3e507f5099ce2d7a5ae63aa8648707ca8

    • SHA512

      c288659a13c57065a62cab294740f715aaae9aa7c5ee6edd74dc7d3cd48b67889484d36a4f138e867adedb22f27a1c189c02692f5fd25eed74a7588ac6e055b8

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDWiekja1br3GGBxfot3e2ke:ymb3NkkiQ3mdBjFWXkj7afoI2r

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks