Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    f78310d1c8cb2b1d77e9e8605a9122f85356ed11b6462231ea3f776c8fe7c40b

  • Size

    93KB

  • Sample

    240706-fkk3eswcqr

  • MD5

    caf203fcd15b9b441ff19f332a395fd5

  • SHA1

    1541a8bfebd97b62351de9851b9f612f18fbd873

  • SHA256

    f78310d1c8cb2b1d77e9e8605a9122f85356ed11b6462231ea3f776c8fe7c40b

  • SHA512

    34716433c13d8cba4e56735501d9567f94a6a0a442ca596f9c07311c1c4e5b1cb583a347b80d1d823fca0a1fa0f9d00e8ca8df19a74cefe350d72ef9985e4702

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIQIDyviFxx2hCtgIMLP9rBZaRBE:ymb3NkkiQ3mdBjFIVLd2hWZGreRCYBI

Malware Config

Targets

    • Target

      f78310d1c8cb2b1d77e9e8605a9122f85356ed11b6462231ea3f776c8fe7c40b

    • Size

      93KB

    • MD5

      caf203fcd15b9b441ff19f332a395fd5

    • SHA1

      1541a8bfebd97b62351de9851b9f612f18fbd873

    • SHA256

      f78310d1c8cb2b1d77e9e8605a9122f85356ed11b6462231ea3f776c8fe7c40b

    • SHA512

      34716433c13d8cba4e56735501d9567f94a6a0a442ca596f9c07311c1c4e5b1cb583a347b80d1d823fca0a1fa0f9d00e8ca8df19a74cefe350d72ef9985e4702

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIQIDyviFxx2hCtgIMLP9rBZaRBE:ymb3NkkiQ3mdBjFIVLd2hWZGreRCYBI

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks