Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    6a38e6b0ae91729e77a5ae4959e0fcc678575ba76984548ab632d24380090f73

  • Size

    15.9MB

  • Sample

    240625-qgpljssakc

  • MD5

    d6c0680a365900389cf6dfbe1c6b335f

  • SHA1

    55abd050b6ca4302353935e4353279a2e6c24be2

  • SHA256

    6a38e6b0ae91729e77a5ae4959e0fcc678575ba76984548ab632d24380090f73

  • SHA512

    671a5b4c7badfd3e9dd24c10e69f252fddfc63cff570372cf5b3392ba8f4208b04e857195b49b608d887dda5b2d16037766d5ad341e2e29b553d74ff55ae8744

  • SSDEEP

    393216:iOVkpwpGNvDasmODLxhLelF3LhAvxF3zTgiV64ag:1VkpwpGZvPxhLelF3Laf3H6A

Score
10/10

Malware Config

Targets

    • Target

      6a38e6b0ae91729e77a5ae4959e0fcc678575ba76984548ab632d24380090f73

    • Size

      15.9MB

    • MD5

      d6c0680a365900389cf6dfbe1c6b335f

    • SHA1

      55abd050b6ca4302353935e4353279a2e6c24be2

    • SHA256

      6a38e6b0ae91729e77a5ae4959e0fcc678575ba76984548ab632d24380090f73

    • SHA512

      671a5b4c7badfd3e9dd24c10e69f252fddfc63cff570372cf5b3392ba8f4208b04e857195b49b608d887dda5b2d16037766d5ad341e2e29b553d74ff55ae8744

    • SSDEEP

      393216:iOVkpwpGNvDasmODLxhLelF3LhAvxF3zTgiV64ag:1VkpwpGZvPxhLelF3Laf3H6A

    Score
    10/10
    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • Loads dropped DLL

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

MITRE ATT&CK Enterprise v15

Tasks