Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    b310a3112037b2c29616794ef38c7cb0_NeikiAnalytics

  • Size

    94KB

  • Sample

    240514-ksc41ahg29

  • MD5

    b310a3112037b2c29616794ef38c7cb0

  • SHA1

    1402c309b452483d85bd45de33059b9c5ffcb6ea

  • SHA256

    d29cd5748d7a37dd1a328b05d047f232fbaf4456c3bb0685f0c0f76eb37759cd

  • SHA512

    8ce2243dd1d9af736c04e46b5bddd967df979463f6f7d3090b413a4f1eb8d23b56d08377a738d8038258610803e3a75319880c7fb578ec24eb13d47ff1a29e7e

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDInWeNCYGyA2R7JxJAg8dtB:ymb3NkkiQ3mdBjFIWeFGyAsJAg2B

Malware Config

Targets

    • Target

      b310a3112037b2c29616794ef38c7cb0_NeikiAnalytics

    • Size

      94KB

    • MD5

      b310a3112037b2c29616794ef38c7cb0

    • SHA1

      1402c309b452483d85bd45de33059b9c5ffcb6ea

    • SHA256

      d29cd5748d7a37dd1a328b05d047f232fbaf4456c3bb0685f0c0f76eb37759cd

    • SHA512

      8ce2243dd1d9af736c04e46b5bddd967df979463f6f7d3090b413a4f1eb8d23b56d08377a738d8038258610803e3a75319880c7fb578ec24eb13d47ff1a29e7e

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDInWeNCYGyA2R7JxJAg8dtB:ymb3NkkiQ3mdBjFIWeFGyAsJAg2B

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks