Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    ac049a6229d96e4451d6b03228d79680N.exe

  • Size

    83KB

  • Sample

    240721-mclsbaybrg

  • MD5

    ac049a6229d96e4451d6b03228d79680

  • SHA1

    b22ebdbccddea87fc6f2364ea6076a0e8b4e7b4e

  • SHA256

    3326111efe62b87d6ab415d126b0c330e13bbb51648aad2d46d8cd6f1667a731

  • SHA512

    c3b812a70d7995438ea42d6c14fa22e0b58bd010cb106f0ffc7cc298f9e1b5397ae4ec8e14b8584a73121a1eaabd93b2fa3247178382924ae914e96784bc8003

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDo73t6MlYqn+jMp9E+zLT71:ymb3NkkiQ3mdBjFo73tvn+Yp9ZD71

Malware Config

Targets

    • Target

      ac049a6229d96e4451d6b03228d79680N.exe

    • Size

      83KB

    • MD5

      ac049a6229d96e4451d6b03228d79680

    • SHA1

      b22ebdbccddea87fc6f2364ea6076a0e8b4e7b4e

    • SHA256

      3326111efe62b87d6ab415d126b0c330e13bbb51648aad2d46d8cd6f1667a731

    • SHA512

      c3b812a70d7995438ea42d6c14fa22e0b58bd010cb106f0ffc7cc298f9e1b5397ae4ec8e14b8584a73121a1eaabd93b2fa3247178382924ae914e96784bc8003

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDo73t6MlYqn+jMp9E+zLT71:ymb3NkkiQ3mdBjFo73tvn+Yp9ZD71

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks