Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    2d18142072bcb0f6e248a399c04b87650faebe5d8e87b0f84e4059274c21cc91

  • Size

    417KB

  • Sample

    240722-ym16javhmp

  • MD5

    c10fa53151c92a9ddb8a6ec5f4fbe8df

  • SHA1

    99352ef9c706f558ed539256511b4c1b3dd63128

  • SHA256

    2d18142072bcb0f6e248a399c04b87650faebe5d8e87b0f84e4059274c21cc91

  • SHA512

    a510c3171787391ceb29be2c62bfa2a73f205a626d6168f63a84ca694e03360a6e75a6585005dd1143025e3d71e9da138117b44d270e80a5085ba4cab0d15559

  • SSDEEP

    12288:n3C9ytvngQj4DtvnV9wLn9UTfC8eieJNBNIsYPv:SgdnJUdnV9P

Malware Config

Targets

    • Target

      2d18142072bcb0f6e248a399c04b87650faebe5d8e87b0f84e4059274c21cc91

    • Size

      417KB

    • MD5

      c10fa53151c92a9ddb8a6ec5f4fbe8df

    • SHA1

      99352ef9c706f558ed539256511b4c1b3dd63128

    • SHA256

      2d18142072bcb0f6e248a399c04b87650faebe5d8e87b0f84e4059274c21cc91

    • SHA512

      a510c3171787391ceb29be2c62bfa2a73f205a626d6168f63a84ca694e03360a6e75a6585005dd1143025e3d71e9da138117b44d270e80a5085ba4cab0d15559

    • SSDEEP

      12288:n3C9ytvngQj4DtvnV9wLn9UTfC8eieJNBNIsYPv:SgdnJUdnV9P

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix

Tasks