Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    a96070bb942b77a847c3857a91a77d934f311b8e924423a3d0cedda3fae34a91

  • Size

    371KB

  • Sample

    240726-b9rjaasara

  • MD5

    a4c4de95a1866f36fc52d17e342a3348

  • SHA1

    fc4764d039be85124990823c6bbe7a4a7453a867

  • SHA256

    a96070bb942b77a847c3857a91a77d934f311b8e924423a3d0cedda3fae34a91

  • SHA512

    11f658d90a44e1dbdb3389efbd0f06401a3f53f968680b2eab0671ad95a92f6d5670629987c56b57b145d83f420028adae44404eb75a35200d09dc6a4cd45e35

  • SSDEEP

    6144:n3C9BRIG0asYFm71mPfkVB8dKwaO5CVw8:n3C9uYA7okVqdKwaO5CV5

Malware Config

Targets

    • Target

      a96070bb942b77a847c3857a91a77d934f311b8e924423a3d0cedda3fae34a91

    • Size

      371KB

    • MD5

      a4c4de95a1866f36fc52d17e342a3348

    • SHA1

      fc4764d039be85124990823c6bbe7a4a7453a867

    • SHA256

      a96070bb942b77a847c3857a91a77d934f311b8e924423a3d0cedda3fae34a91

    • SHA512

      11f658d90a44e1dbdb3389efbd0f06401a3f53f968680b2eab0671ad95a92f6d5670629987c56b57b145d83f420028adae44404eb75a35200d09dc6a4cd45e35

    • SSDEEP

      6144:n3C9BRIG0asYFm71mPfkVB8dKwaO5CVw8:n3C9uYA7okVqdKwaO5CV5

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks