Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    661f1cef50d83b1541d44241852f4608900ceccf8c4bf7b62a655d98b477d6e9

  • Size

    443KB

  • Sample

    240723-2b6tesvgqg

  • MD5

    6b0e18cd2ac168883f8181ea6bfe5f1b

  • SHA1

    8a3e8acef761c2e6a45aa71f603509a2bb29f036

  • SHA256

    661f1cef50d83b1541d44241852f4608900ceccf8c4bf7b62a655d98b477d6e9

  • SHA512

    677cc2e2b9a48861052de131d1f210d73c9e039481cd2b147b31e436dfd46b6041b0659ec91acf7621b0149c3c66fa889a12591583c571240ca9234087950de5

  • SSDEEP

    12288:M4wFHoSpg4wFHonR/nPF2LnFL4wF04wFK4wFK4wluAS:UrR/nPRS

Malware Config

Targets

    • Target

      661f1cef50d83b1541d44241852f4608900ceccf8c4bf7b62a655d98b477d6e9

    • Size

      443KB

    • MD5

      6b0e18cd2ac168883f8181ea6bfe5f1b

    • SHA1

      8a3e8acef761c2e6a45aa71f603509a2bb29f036

    • SHA256

      661f1cef50d83b1541d44241852f4608900ceccf8c4bf7b62a655d98b477d6e9

    • SHA512

      677cc2e2b9a48861052de131d1f210d73c9e039481cd2b147b31e436dfd46b6041b0659ec91acf7621b0149c3c66fa889a12591583c571240ca9234087950de5

    • SSDEEP

      12288:M4wFHoSpg4wFHonR/nPF2LnFL4wF04wFK4wFK4wluAS:UrR/nPRS

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks