Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    73c91b6ad96ba89d3cec053c74a3eb20_NeikiAnalytics

  • Size

    56KB

  • Sample

    240516-b2d8zseg59

  • MD5

    73c91b6ad96ba89d3cec053c74a3eb20

  • SHA1

    61223e2901d8f06be29b5afa4aba3b46f2ce2e23

  • SHA256

    f5b48a39b32c914af616b0e10bd4c1d8495577c096598257fdca316d157027cb

  • SHA512

    8a1c0e43ef114058f9cf017172658ad6d475f402aa1ea7bd1362a211e05cbca7978e6c9afbce3c098b88765e896ffc0ea7f9e33ddab02d644c21312ce0df3db4

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxND0chVh:ymb3NkkiQ3mdBjF0crh

Malware Config

Targets

    • Target

      73c91b6ad96ba89d3cec053c74a3eb20_NeikiAnalytics

    • Size

      56KB

    • MD5

      73c91b6ad96ba89d3cec053c74a3eb20

    • SHA1

      61223e2901d8f06be29b5afa4aba3b46f2ce2e23

    • SHA256

      f5b48a39b32c914af616b0e10bd4c1d8495577c096598257fdca316d157027cb

    • SHA512

      8a1c0e43ef114058f9cf017172658ad6d475f402aa1ea7bd1362a211e05cbca7978e6c9afbce3c098b88765e896ffc0ea7f9e33ddab02d644c21312ce0df3db4

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxND0chVh:ymb3NkkiQ3mdBjF0crh

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks