Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    1a6f27fd00e148bc8c10a7d2f73d4bd0_NeikiAnalytics

  • Size

    205KB

  • Sample

    240515-xs6sjafb7y

  • MD5

    1a6f27fd00e148bc8c10a7d2f73d4bd0

  • SHA1

    c80a8e2aa67203bb70cd055ee47f1935498d4393

  • SHA256

    ba0a6549a5260a2c34be5180b4f0d6ecb30d82aea35ada67cfc210bbce78ce81

  • SHA512

    19ffc25b232c6da2c8ad15273657833f7990967e956049a3c98f9ef27d5125a593ad086d4974ed25b4808472f27778e0a2f6c1f66399217c70295436a9bf9ba0

  • SSDEEP

    1536:PvQBeOGtrYSSsrc93UBIfdC67m6AJiqgT4+C2HVM1p6TQpCihJ:PhOm2sI93UufdC67ciJTU2HVS64hJ

Malware Config

Targets

    • Target

      1a6f27fd00e148bc8c10a7d2f73d4bd0_NeikiAnalytics

    • Size

      205KB

    • MD5

      1a6f27fd00e148bc8c10a7d2f73d4bd0

    • SHA1

      c80a8e2aa67203bb70cd055ee47f1935498d4393

    • SHA256

      ba0a6549a5260a2c34be5180b4f0d6ecb30d82aea35ada67cfc210bbce78ce81

    • SHA512

      19ffc25b232c6da2c8ad15273657833f7990967e956049a3c98f9ef27d5125a593ad086d4974ed25b4808472f27778e0a2f6c1f66399217c70295436a9bf9ba0

    • SSDEEP

      1536:PvQBeOGtrYSSsrc93UBIfdC67m6AJiqgT4+C2HVM1p6TQpCihJ:PhOm2sI93UufdC67ciJTU2HVS64hJ

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks