Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    0b71e2a0a6110584b9c634ea86e5b9d0_NeikiAnalytics

  • Size

    83KB

  • Sample

    240511-ra7dfsde96

  • MD5

    0b71e2a0a6110584b9c634ea86e5b9d0

  • SHA1

    2d7efa1693c016d3799de886f6b6a6a2d56af258

  • SHA256

    a3359f519c180bb0023c79db5a1543990ba80d5759b45ce70d40fec85351d0a9

  • SHA512

    851968e66dc2c3fc524e562ecb6e3ac17c5b1bfa99df81ad98a51f634ba5b408c9be9367e1b1d6f21bc55f4715a545c23815c305c85b8aa8956f586daba2cb9b

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIJSLCBCO+HlMO7s0yOy:ymb3NkkiQ3mdBjFIwLMoHW8y7

Malware Config

Targets

    • Target

      0b71e2a0a6110584b9c634ea86e5b9d0_NeikiAnalytics

    • Size

      83KB

    • MD5

      0b71e2a0a6110584b9c634ea86e5b9d0

    • SHA1

      2d7efa1693c016d3799de886f6b6a6a2d56af258

    • SHA256

      a3359f519c180bb0023c79db5a1543990ba80d5759b45ce70d40fec85351d0a9

    • SHA512

      851968e66dc2c3fc524e562ecb6e3ac17c5b1bfa99df81ad98a51f634ba5b408c9be9367e1b1d6f21bc55f4715a545c23815c305c85b8aa8956f586daba2cb9b

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIJSLCBCO+HlMO7s0yOy:ymb3NkkiQ3mdBjFIwLMoHW8y7

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks