Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    edff3fabab5c6532ed98673f33a22040N.exe

  • Size

    86KB

  • Sample

    240720-vksvlawbml

  • MD5

    edff3fabab5c6532ed98673f33a22040

  • SHA1

    e1ed775bcfbcae9cbd9fbdd97ad8b6416488f30f

  • SHA256

    736158917ca0eddf0377d1d3b32f8f0e7544aef95dcf9211435c627ce75266c3

  • SHA512

    b5a2a36af446b253113e6350001807e9b9fcae4d8853de399b785637559ac2aa86ba26306cf3af1e98233d1a58ac0dfe3cbb1463bb615cff968e8aee5fe394c9

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDo73yqKH/KjvHo+WdNlj:ymb3NkkiQ3mdBjFo73yX+vI+qvj

Malware Config

Targets

    • Target

      edff3fabab5c6532ed98673f33a22040N.exe

    • Size

      86KB

    • MD5

      edff3fabab5c6532ed98673f33a22040

    • SHA1

      e1ed775bcfbcae9cbd9fbdd97ad8b6416488f30f

    • SHA256

      736158917ca0eddf0377d1d3b32f8f0e7544aef95dcf9211435c627ce75266c3

    • SHA512

      b5a2a36af446b253113e6350001807e9b9fcae4d8853de399b785637559ac2aa86ba26306cf3af1e98233d1a58ac0dfe3cbb1463bb615cff968e8aee5fe394c9

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDo73yqKH/KjvHo+WdNlj:ymb3NkkiQ3mdBjFo73yX+vI+qvj

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks