Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    acc861445e790fc70af211a6a4667690_NeikiAnalytics

  • Size

    55KB

  • Sample

    240511-mdnnasfb88

  • MD5

    acc861445e790fc70af211a6a4667690

  • SHA1

    4fdab77dc296262dc6a5b3e1a5dc2017a10a0532

  • SHA256

    d43ee8db0c00cf4f6fd95be4090150de1ef4aeb6a29ed36e8aa5e590962e6719

  • SHA512

    d869597dabd334ef95ed1a1204cec3b13b08f78b681954510e20ec25ad00524a70efc3cc51903d9383a40a70f8e90ef7e6e2d247b3da2ff56982e557093d511d

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIb6tZ9bm:ymb3NkkiQ3mdBjFIb6tZNm

Malware Config

Targets

    • Target

      acc861445e790fc70af211a6a4667690_NeikiAnalytics

    • Size

      55KB

    • MD5

      acc861445e790fc70af211a6a4667690

    • SHA1

      4fdab77dc296262dc6a5b3e1a5dc2017a10a0532

    • SHA256

      d43ee8db0c00cf4f6fd95be4090150de1ef4aeb6a29ed36e8aa5e590962e6719

    • SHA512

      d869597dabd334ef95ed1a1204cec3b13b08f78b681954510e20ec25ad00524a70efc3cc51903d9383a40a70f8e90ef7e6e2d247b3da2ff56982e557093d511d

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIb6tZ9bm:ymb3NkkiQ3mdBjFIb6tZNm

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks