Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    e07ef2abb74250afcc7f89e4d6341877254131aa6fd814e8484cadf3afeb021f

  • Size

    212KB

  • Sample

    240711-hvephaxckc

  • MD5

    c9d58c0685de0cf2bfd234445c7eb2cc

  • SHA1

    d8e88c79edf87d0c4a494c1deaeae83dbee71f6d

  • SHA256

    e07ef2abb74250afcc7f89e4d6341877254131aa6fd814e8484cadf3afeb021f

  • SHA512

    d80c76f78d7e125f9fb0c33bbb056067f789705fa0d9305b9a33f8a4c1676f97a340e94382ddc19f8a87e3596dedfefb265153c06beb853324e5e9e1065e95cd

  • SSDEEP

    6144:Hcm4FmowdHoSrXZf8l/ubPzYNLPf4t+lE:V4wFHoSBK/ubLcfS

Malware Config

Targets

    • Target

      e07ef2abb74250afcc7f89e4d6341877254131aa6fd814e8484cadf3afeb021f

    • Size

      212KB

    • MD5

      c9d58c0685de0cf2bfd234445c7eb2cc

    • SHA1

      d8e88c79edf87d0c4a494c1deaeae83dbee71f6d

    • SHA256

      e07ef2abb74250afcc7f89e4d6341877254131aa6fd814e8484cadf3afeb021f

    • SHA512

      d80c76f78d7e125f9fb0c33bbb056067f789705fa0d9305b9a33f8a4c1676f97a340e94382ddc19f8a87e3596dedfefb265153c06beb853324e5e9e1065e95cd

    • SSDEEP

      6144:Hcm4FmowdHoSrXZf8l/ubPzYNLPf4t+lE:V4wFHoSBK/ubLcfS

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks