Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2b496769513b4829e7e99aa4d959d000N.exe

  • Size

    68KB

  • Sample

    240721-3n34qstajp

  • MD5

    2b496769513b4829e7e99aa4d959d000

  • SHA1

    3dfc221ece2143eac1753ae58d28204a834e1ffb

  • SHA256

    6d58231936d99404657a49ad23138bbfa9427531d791e38d8e64ba08d2e1f9d9

  • SHA512

    f3e8352b9319775494239aeb21508f26ee470692ec9a2b054494c64c619c51bea600474eb2bbcfc6f24bfc43ff3ba011f6014d459fe68056f8b424392fb1f8ef

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIb0z6MTSqfUci4IO:ymb3NkkiQ3mdBjFI4V4ci4IO

Malware Config

Targets

    • Target

      2b496769513b4829e7e99aa4d959d000N.exe

    • Size

      68KB

    • MD5

      2b496769513b4829e7e99aa4d959d000

    • SHA1

      3dfc221ece2143eac1753ae58d28204a834e1ffb

    • SHA256

      6d58231936d99404657a49ad23138bbfa9427531d791e38d8e64ba08d2e1f9d9

    • SHA512

      f3e8352b9319775494239aeb21508f26ee470692ec9a2b054494c64c619c51bea600474eb2bbcfc6f24bfc43ff3ba011f6014d459fe68056f8b424392fb1f8ef

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDIb0z6MTSqfUci4IO:ymb3NkkiQ3mdBjFI4V4ci4IO

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks