Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    f685f662584f6fac10287c9f3b09c682878f3de6c1a6daa0c9fa1f175ff1ad9c

  • Size

    402KB

  • Sample

    240709-jhflpsshpk

  • MD5

    c1a1293a263eb2f969c195df613a3d19

  • SHA1

    0528035e8ae10f6e30716f27d27659a27e1ff4f0

  • SHA256

    f685f662584f6fac10287c9f3b09c682878f3de6c1a6daa0c9fa1f175ff1ad9c

  • SHA512

    35d9e5c4cc02734c62bea0f44608a571ae367336c8dc58e5f4b7b85a3bc28235d4cf88cd21bd840663fd8ac1bab52aceb2da8ae7c4193ede9733af4e0be99425

  • SSDEEP

    3072:ymb3NkkiQ3mdBjFIi/0RU6QeYQsm71vPmX5kr+uIBpkJITEEuR9XTVyXmmBv:n3C9BRIG0asYFm71mJkr+uIBe1T8X9

Malware Config

Targets

    • Target

      f685f662584f6fac10287c9f3b09c682878f3de6c1a6daa0c9fa1f175ff1ad9c

    • Size

      402KB

    • MD5

      c1a1293a263eb2f969c195df613a3d19

    • SHA1

      0528035e8ae10f6e30716f27d27659a27e1ff4f0

    • SHA256

      f685f662584f6fac10287c9f3b09c682878f3de6c1a6daa0c9fa1f175ff1ad9c

    • SHA512

      35d9e5c4cc02734c62bea0f44608a571ae367336c8dc58e5f4b7b85a3bc28235d4cf88cd21bd840663fd8ac1bab52aceb2da8ae7c4193ede9733af4e0be99425

    • SSDEEP

      3072:ymb3NkkiQ3mdBjFIi/0RU6QeYQsm71vPmX5kr+uIBpkJITEEuR9XTVyXmmBv:n3C9BRIG0asYFm71mJkr+uIBe1T8X9

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks