Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    e11395ff46b23e134321b01af40bc2ad678588ccdb94d6ccbaa472e65de3046f

  • Size

    93KB

  • Sample

    240814-bdke4atblf

  • MD5

    954e07803cfaa102a921e55038b64877

  • SHA1

    d8d7d8266afb45b4e3bab980c2e2faaeebe3215b

  • SHA256

    e11395ff46b23e134321b01af40bc2ad678588ccdb94d6ccbaa472e65de3046f

  • SHA512

    1a50e3a7e807252b074bf711ab6b731ce6584335953c96e89c85a4a651a001187b8509941f2f3f7f1188317d8937e75a2691b5c6b48ae05a7ee0605fabc1e0cf

  • SSDEEP

    1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDo7xCkTsIRwnohZkqwKYSpFxL:ymb3NkkiQ3mdBjFo7LAIRUohDwKY+xL

Malware Config

Targets

    • Target

      e11395ff46b23e134321b01af40bc2ad678588ccdb94d6ccbaa472e65de3046f

    • Size

      93KB

    • MD5

      954e07803cfaa102a921e55038b64877

    • SHA1

      d8d7d8266afb45b4e3bab980c2e2faaeebe3215b

    • SHA256

      e11395ff46b23e134321b01af40bc2ad678588ccdb94d6ccbaa472e65de3046f

    • SHA512

      1a50e3a7e807252b074bf711ab6b731ce6584335953c96e89c85a4a651a001187b8509941f2f3f7f1188317d8937e75a2691b5c6b48ae05a7ee0605fabc1e0cf

    • SSDEEP

      1536:9Q8hoOAesfYvcyjfS3H9yl8Q1pmdBcxedLxNDo7xCkTsIRwnohZkqwKYSpFxL:ymb3NkkiQ3mdBjFo7LAIRUohDwKY+xL

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks