Windows 7 deprecation

Windows 7 will be removed from tria.ge on 2025-03-31

General

  • Target

    7d6a1781b35442a4b3a20eb81386f820N.exe

  • Size

    296KB

  • Sample

    240814-h73l4avblj

  • MD5

    7d6a1781b35442a4b3a20eb81386f820

  • SHA1

    5de5ea6381b363b4482749d350f75dc8ec95cce9

  • SHA256

    946cdbd1ab14c31846031c5158d852825ac07decf251edd9dfedee894dc34a21

  • SHA512

    3c237936b7fd7bb6f8b1f073c7c564076ecaf830be30440132e405953f0bdd43e5b0aa063e2b24927f5fe79bdcf5dd19aa5d36c244b84b19540b8872825762a4

  • SSDEEP

    6144:n3C9BRo/AIuuOthLmH403Pyr6UWO6jUl7sPgvh:n3C9uDVOXLmHBKWyn+Pgvh

Malware Config

Targets

    • Target

      7d6a1781b35442a4b3a20eb81386f820N.exe

    • Size

      296KB

    • MD5

      7d6a1781b35442a4b3a20eb81386f820

    • SHA1

      5de5ea6381b363b4482749d350f75dc8ec95cce9

    • SHA256

      946cdbd1ab14c31846031c5158d852825ac07decf251edd9dfedee894dc34a21

    • SHA512

      3c237936b7fd7bb6f8b1f073c7c564076ecaf830be30440132e405953f0bdd43e5b0aa063e2b24927f5fe79bdcf5dd19aa5d36c244b84b19540b8872825762a4

    • SSDEEP

      6144:n3C9BRo/AIuuOthLmH403Pyr6UWO6jUl7sPgvh:n3C9uDVOXLmHBKWyn+Pgvh

    • Blackmoon, KrBanker

      Blackmoon also known as KrBanker is banking trojan first discovered in early 2014.

    • Detect Blackmoon payload

    • Executes dropped EXE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks