Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    virussign.com_c5cee30af64bc9949411b2d7fa828b00.vir

  • Size

    80KB

  • Sample

    240602-mgh7zsba92

  • MD5

    c5cee30af64bc9949411b2d7fa828b00

  • SHA1

    1714e5e1d38be5125574d62283ed27b165ec566c

  • SHA256

    212b54f84651cd91e8c44562b0398e85b61a52acd75c9d00d523fa2181f1f532

  • SHA512

    ae792fc08a2f79ad2379badfb03cf25f922a8d8ec038659d250159e708011aabca82052b111643c597059c2c1ba3e53ecab51a31bfe916820485e1f8694478be

  • SSDEEP

    1536:zvQBeOGtrYS3srx93UBWfwC6Ggnouy8iT4+C2HVM1p6TVqMJ891:zhOmTsF93UYfwC6GIoutiTU2HVS6cMJI

Malware Config

Targets

    • Target

      virussign.com_c5cee30af64bc9949411b2d7fa828b00.vir

    • Size

      80KB

    • MD5

      c5cee30af64bc9949411b2d7fa828b00

    • SHA1

      1714e5e1d38be5125574d62283ed27b165ec566c

    • SHA256

      212b54f84651cd91e8c44562b0398e85b61a52acd75c9d00d523fa2181f1f532

    • SHA512

      ae792fc08a2f79ad2379badfb03cf25f922a8d8ec038659d250159e708011aabca82052b111643c597059c2c1ba3e53ecab51a31bfe916820485e1f8694478be

    • SSDEEP

      1536:zvQBeOGtrYS3srx93UBWfwC6Ggnouy8iT4+C2HVM1p6TVqMJ891:zhOmTsF93UYfwC6GIoutiTU2HVS6cMJI

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks