Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

7

0dbff9893e...2d.exe

windows7-x64

10

0dbff9893e...2d.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0dbff9893ecbaea8dd5c7b1c14f786c7762fa5977e1c3f2e7aa24e9864c8f02d

  • Size

    15.2MB

  • Sample

    240526-mlfbwsfh84

  • MD5

    3f312ca7f4bcf842229d1fae83a15508

  • SHA1

    a3a23d5d78ed165ca89074b03ccf512f6c1356fa

  • SHA256

    0dbff9893ecbaea8dd5c7b1c14f786c7762fa5977e1c3f2e7aa24e9864c8f02d

  • SHA512

    98515d12d7ea835e9284e82c4e725fba8063fb91d2a7d91a038dfd34727eea80453fd623f79f71fc3f241bd7a7572b93598a4a9ae9ffcd8828029fffa31dfb7e

  • SSDEEP

    393216:UnzpGNvEesnRYXM9i3lDEm3OZ5DMGB//ehu2Ap:UpG8Yc6lDEmagGB+hEp

Score
10/10
blackmoonaspackv2bankertrojan

Malware Config

Targets

    • Target

      0dbff9893ecbaea8dd5c7b1c14f786c7762fa5977e1c3f2e7aa24e9864c8f02d

    • Size

      15.2MB

    • MD5

      3f312ca7f4bcf842229d1fae83a15508

    • SHA1

      a3a23d5d78ed165ca89074b03ccf512f6c1356fa

    • SHA256

      0dbff9893ecbaea8dd5c7b1c14f786c7762fa5977e1c3f2e7aa24e9864c8f02d

    • SHA512

      98515d12d7ea835e9284e82c4e725fba8063fb91d2a7d91a038dfd34727eea80453fd623f79f71fc3f241bd7a7572b93598a4a9ae9ffcd8828029fffa31dfb7e

    • SSDEEP

      393216:UnzpGNvEesnRYXM9i3lDEm3OZ5DMGB//ehu2Ap:UpG8Yc6lDEmagGB+hEp

    Score
    10/10
    blackmoonaspackv2bankertrojan

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • ASPack v2.12-2.42

      Detects executables packed with ASPack v2.12-2.42

      aspackv2

    • Executes dropped EXE

    • Loads dropped DLL

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks