Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    c5e710822c4bb6cded3a8344c6679a30N.exe

  • Size

    336KB

  • Sample

    240721-p16hqstcpp

  • MD5

    c5e710822c4bb6cded3a8344c6679a30

  • SHA1

    d0a85cd93b1e920c676ed590216e8bd654d956c3

  • SHA256

    722024ecc90f02f80ed043eb44ed889d693dfb8909341a01efd2e6b706b99cec

  • SHA512

    c6474a62eb8ccff475dfa62d8ef95272779505ace69fa4b40a2adb5cc507599e77d95ee509c3e52694291f15aa1a4050711e94c9be90075b640ffb883e5c5d70

  • SSDEEP

    6144:rcm4FmowdHoSphraHcpOaKHpXfRo0V8JcgE+ezpg1i/s:x4wFHoS3eFaKHpv/VycgE8os

Malware Config

Targets

    • Target

      c5e710822c4bb6cded3a8344c6679a30N.exe

    • Size

      336KB

    • MD5

      c5e710822c4bb6cded3a8344c6679a30

    • SHA1

      d0a85cd93b1e920c676ed590216e8bd654d956c3

    • SHA256

      722024ecc90f02f80ed043eb44ed889d693dfb8909341a01efd2e6b706b99cec

    • SHA512

      c6474a62eb8ccff475dfa62d8ef95272779505ace69fa4b40a2adb5cc507599e77d95ee509c3e52694291f15aa1a4050711e94c9be90075b640ffb883e5c5d70

    • SSDEEP

      6144:rcm4FmowdHoSphraHcpOaKHpXfRo0V8JcgE+ezpg1i/s:x4wFHoS3eFaKHpv/VycgE8os

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks