Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2fbb427b9269751db48c3c634d2334b0_NeikiAnalytics

  • Size

    186KB

  • Sample

    240511-x98y8adh2s

  • MD5

    2fbb427b9269751db48c3c634d2334b0

  • SHA1

    51215601716527cc60289292653fa4a93cbf0994

  • SHA256

    e7c453e073ac2c846a288dc01c56749ac369be4735f2733bb7f7a179990030e8

  • SHA512

    7f33bd554135921bdb6d4b2152b8fae776d7bb5a868db305a99e25903f4bd47eda662dcaa5d630422bd4ecaaa826aae1ebc8e9131b2ed3e7b4352aa035b09a8d

  • SSDEEP

    3072:3hOmTsF93UYfwC6GIoutw8YcvrqrE66kropO6BWlPFH4tw1D43eMA:3cm4FmowdHoSzhraHcpOFltH4twl43vA

Malware Config

Targets

    • Target

      2fbb427b9269751db48c3c634d2334b0_NeikiAnalytics

    • Size

      186KB

    • MD5

      2fbb427b9269751db48c3c634d2334b0

    • SHA1

      51215601716527cc60289292653fa4a93cbf0994

    • SHA256

      e7c453e073ac2c846a288dc01c56749ac369be4735f2733bb7f7a179990030e8

    • SHA512

      7f33bd554135921bdb6d4b2152b8fae776d7bb5a868db305a99e25903f4bd47eda662dcaa5d630422bd4ecaaa826aae1ebc8e9131b2ed3e7b4352aa035b09a8d

    • SSDEEP

      3072:3hOmTsF93UYfwC6GIoutw8YcvrqrE66kropO6BWlPFH4tw1D43eMA:3cm4FmowdHoSzhraHcpOFltH4twl43vA

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks