Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    05645442132cb14ff2f64e0b0f2a740f2b07505949961eb96423c6564c5dc264

  • Size

    76KB

  • Sample

    240524-wyarlseh35

  • MD5

    287414622bb8b4193a47085f7537410a

  • SHA1

    48684dfe3568f87669d3265f1e7bdf9b70decf18

  • SHA256

    05645442132cb14ff2f64e0b0f2a740f2b07505949961eb96423c6564c5dc264

  • SHA512

    9ac31e4c1738568255b56403c2f716e8617faf8ffc4f9ba9134d8d72eb614c9ab0768be1b7bfd9d5bf602a8623b7025804fec12cea751220a3ccb5d449064139

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDoAX8gu3Gno9yvrjKI:ymb3NkkiQ3mdBjFo68t3Gno9Ij

Malware Config

Targets

    • Target

      05645442132cb14ff2f64e0b0f2a740f2b07505949961eb96423c6564c5dc264

    • Size

      76KB

    • MD5

      287414622bb8b4193a47085f7537410a

    • SHA1

      48684dfe3568f87669d3265f1e7bdf9b70decf18

    • SHA256

      05645442132cb14ff2f64e0b0f2a740f2b07505949961eb96423c6564c5dc264

    • SHA512

      9ac31e4c1738568255b56403c2f716e8617faf8ffc4f9ba9134d8d72eb614c9ab0768be1b7bfd9d5bf602a8623b7025804fec12cea751220a3ccb5d449064139

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDoAX8gu3Gno9yvrjKI:ymb3NkkiQ3mdBjFo68t3Gno9Ij

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • UPX dump on OEP (original entry point)

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks

We care about your privacy.

This website stores cookies on your computer. These cookies are used to improve your website experience and provide more personalized services to you, both on this website and through other media. To find out more about the cookies we use, see our Privacy Policy.