Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2f1d4728c2b3de6ce52345da42eca630_NeikiAnalytics

  • Size

    122KB

  • Sample

    240513-2twfeagh6s

  • MD5

    2f1d4728c2b3de6ce52345da42eca630

  • SHA1

    02c16126652fa0071038f8bf594d021fb50e13bf

  • SHA256

    6b258e4a75493e5c3c68e0ff1102e6a1e627406edc4f2f23f57512ee620746c5

  • SHA512

    cb263825bbe01353967d64620324fc164109bfd35fa66d0dec4ae6dc6a66fa5eceeddb82064f72a415d42839d27e77c4526edb3b466840f11359e404a6e28043

  • SSDEEP

    3072:9hOmTsF93UYfwC6GIoutz5yLpcka62c+8+dRN1Gw:9cm4FmowdHoSZ6lCX9

Malware Config

Targets

    • Target

      2f1d4728c2b3de6ce52345da42eca630_NeikiAnalytics

    • Size

      122KB

    • MD5

      2f1d4728c2b3de6ce52345da42eca630

    • SHA1

      02c16126652fa0071038f8bf594d021fb50e13bf

    • SHA256

      6b258e4a75493e5c3c68e0ff1102e6a1e627406edc4f2f23f57512ee620746c5

    • SHA512

      cb263825bbe01353967d64620324fc164109bfd35fa66d0dec4ae6dc6a66fa5eceeddb82064f72a415d42839d27e77c4526edb3b466840f11359e404a6e28043

    • SSDEEP

      3072:9hOmTsF93UYfwC6GIoutz5yLpcka62c+8+dRN1Gw:9cm4FmowdHoSZ6lCX9

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks