Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

Overview

overview

10

Static

static

3

9ab072ccd4...cs.exe

windows7-x64

10

9ab072ccd4...cs.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9ab072ccd484d8da62ebb19ebdde2f60_NeikiAnalytics.exe

  • Size

    835KB

  • Sample

    240603-egm7yabg53

  • MD5

    9ab072ccd484d8da62ebb19ebdde2f60

  • SHA1

    9912dc7816a7a9e8544ee7477cefcba7ddd0d011

  • SHA256

    672913e70c81197a5f6633d5c5376330f7617a16c81c947183a2e4b7721953de

  • SHA512

    dca4e79d183478b9322617e73648ee7807ecd47d8b262bdb225d805a356bd4e7b5eeac3023500917f31cad18b60051acd6d113126a4d4c5a36da49c4e474ba46

  • SSDEEP

    24576:Sgdn8whSenedn8whhdn76gdn8whSfgdn8whSzn:TFyVPfm

Score
10/10
blackmoonbankertrojanupx

Malware Config

Targets

    • Target

      9ab072ccd484d8da62ebb19ebdde2f60_NeikiAnalytics.exe

    • Size

      835KB

    • MD5

      9ab072ccd484d8da62ebb19ebdde2f60

    • SHA1

      9912dc7816a7a9e8544ee7477cefcba7ddd0d011

    • SHA256

      672913e70c81197a5f6633d5c5376330f7617a16c81c947183a2e4b7721953de

    • SHA512

      dca4e79d183478b9322617e73648ee7807ecd47d8b262bdb225d805a356bd4e7b5eeac3023500917f31cad18b60051acd6d113126a4d4c5a36da49c4e474ba46

    • SSDEEP

      24576:Sgdn8whSenedn8whhdn76gdn8whSfgdn8whSzn:TFyVPfm

    Score
    10/10
    blackmoonbankertrojanupx

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

      trojanbankerblackmoon

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks